CNNVD-202507-2906 Information
CNNVD ID
CNNVD-202507-2906
Related CVE
- CNNVD Published: 2025-07-22
Description (Chinese)
Devolutions Server是加拿大Devolutions公司的一个应用系统。提供功能齐全的共享帐户和密码管理解决方案。 Devolutions Server 2025.2.4.0及之前版本和2025.1.11.0及之前版本存在安全漏洞,该漏洞源于安全消息组件访问控制不当,可能导致未经授权的条目窃取。
Description (English)
The Defenses Server is an application of the Canadian Defenses Corporation. Provide a fully functional shared account and password management solution. There is a security loophole in the Defenses Server 2025.2.4.0 and previous and 2025.1.11.0 and earlier versions, which stems from inadequate access controls of the security message component, which may lead to unauthorized entries being stolen.
Hazard Level
Medium
Vulnerability Type
访问控制错误
Affected Vendor
Devolutions
Published
2025-07-22
Last Modified
2026-02-24
References
https://devolutions.net/security/advisories/DEVO-2025-0012/ https://access.redhat.com/security/cve/cve-2025-6741 https://nvd.nist.gov/vuln/detail/CVE-2025-6741
Patch
https://devolutions.net/server/download/
Share on: