CVE-2026-12105 | Devolutions Server up to 2026.1.20/2026.2.4 Attachments authorization (DEVO-2026-0017)

Inserito da Angelo Barbosa | Giu 16, 2026 | CVE

A vulnerability classified as critical has been found in Devolutions Server up to 2026.1.20/2026.2.4. Affected is an unknown function of the component Attachments Handler. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2026-12105. The attack is possible to be carried out remotely. No exploit exists.

It is recommended to upgrade the affected component.

CVE-2026-12105 | Devolutions Server up to 2026.1.20/2026.2.4 Attachments authorization (DEVO-2026-0017)

Post correlati

CVE-2026-20445 | MediaTek MT8798 MDDP toctou

CVE-2024-42776 | Kashipara Hotel Management System 1.0 /admin/users.php access control

CVE-2025-5497 | slackero phpwcms up to 1.9.45/1.10.8 Feedimport Module processing.inc.php cnt_text deserialization

CVE-2024-56463 | IBM QRadar SIEM up to 7.5.0 UP11 Web UI cross site scripting