CNNVD-202510-2090 Information
CNNVD ID
CNNVD-202510-2090
Related CVE
- CNNVD Published: 2025-10-15
Description (Chinese)
Devolutions Server是加拿大Devolutions公司的一个应用系统。提供功能齐全的共享帐户和密码管理解决方案。 Devolutions Server 2025.3.2及之前版本存在安全漏洞,该漏洞源于连接到网关时证书验证不当,可能导致中间人攻击者拦截流量。
Description (English)
The Defenses Server is an application of the Canadian Defenses Corporation. Provide a fully functional shared account and password management solution. There is a security loophole in the Defenses Server 2025.3.2 and earlier versions, which arises from the improper certification of certificates when connected to the gateway, which may lead to the interception of traffic by the middlemen.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Devolutions
Published
2025-10-15
Last Modified
2026-02-24
References
https://devolutions.net/security/advisories/DEVO-2025-0014/ https://access.redhat.com/security/cve/cve-2025-11619
Patch
https://devolutions.net/security/advisories/DEVO-2025-0014/
Share on: