CNNVD-202507-2905 Information
CNNVD ID
CNNVD-202507-2905
Related CVE
- CNNVD Published: 2025-07-22
Description (Chinese)
Devolutions Server是加拿大Devolutions公司的一个应用系统。提供功能齐全的共享帐户和密码管理解决方案。 Devolutions Server 2025.2.3.0及之前版本和2025.1.11.0及之前版本存在安全漏洞,该漏洞源于紧急认证组件使用弱凭据,可能导致认证绕过。
Description (English)
The Defenses Server is an application of the Canadian Defenses Corporation. Provide a fully functional shared account and password management solution. There is a security loophole in the Defenses Server 2025.2.3.0 and previous and 2025.1.11.0 and earlier versions, which stems from the use of weak evidence for emergency authentication components, which may lead to the certification being bypassed.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Devolutions
Published
2025-07-22
Last Modified
2026-02-24
References
https://devolutions.net/security/advisories/DEVO-2025-0012/ https://access.redhat.com/security/cve/cve-2025-6523 https://nvd.nist.gov/vuln/detail/CVE-2025-6523
Patch
https://devolutions.net/server/download/
Share on: