CVE-2025-4493 | Devolutions Server up to 2024.3.15.0/2025.1.7.0 PAM JIT Request privileges assignment (DEVO-2025-0008)

Inserito da Angelo Barbosa | Mag 28, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Devolutions Server up to 2024.3.15.0/2025.1.7.0. This issue affects some unknown processing of the component PAM JIT Request Handler. The manipulation leads to incorrect privilege assignment.

The identification of this vulnerability is CVE-2025-4493. The attack needs to be done within the local network. There is no exploit available.

CVE-2025-4493 | Devolutions Server up to 2024.3.15.0/2025.1.7.0 PAM JIT Request privileges assignment (DEVO-2025-0008)

Post correlati

CVE-2024-36061 | EnGenius EWS356-FIT up to 1.1.30 Ping/Speed Test os command injection

CVE-2024-56685 | Linux Kernel up to 6.11.10/6.12.1 mediatek soc.h num_codecs null pointer dereference

CVE-2023-35876 | WooCommerce Square Plugin up to 3.8.1 on WordPress authorization

CVE-2023-33930 | Unlimited Elements Unlimited Elements for Elementor Plugin unrestricted upload