CVE-2024-5072 | Devolutions Server up to 2024.1.11.0 PAM JIT Elevation access control (DEVO-2024-0007)

Posted by Angelo Barbosa | May 17, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Devolutions Server up to 2024.1.11.0. Affected by this issue is some unknown functionality of the component PAM JIT Elevation. The manipulation leads to improper access controls.

This vulnerability is handled as CVE-2024-5072. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-5072 | Devolutions Server up to 2024.1.11.0 PAM JIT Elevation access control (DEVO-2024-0007)

Related Posts

CVE-2024-3199 | Plus Addons for Elementor Plugin up to 5.4.2 on WordPress Countdown Widget cross site scripting

CVE-2024-3210 | collizo4sky Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Plugin cross site scripting

CVE-2024-23174 | MediaWiki up to 1.35.13/1.39.5/1.40.1 PageTriage Extension cross site scripting

CVE-2023-1111 | FastCMS up to 0.1.5 New Article Tab Title cross site scripting (I8ERNV)