CNNVD-202510-2824 Information
CNNVD ID
CNNVD-202510-2824
Related CVE
- CNNVD Published: 2025-10-22
Description (Chinese)
Devolutions Server是加拿大Devolutions公司的一个应用系统。提供功能齐全的共享帐户和密码管理解决方案。 Devolutions Server 2025.2.15.0及之前版本存在安全漏洞,该漏洞源于Security Dashboard ignored-tasks API输入验证不当,可能导致拒绝服务攻击。
Description (English)
The Defenses Server is an application of the Canadian Defenses Corporation. Provide a fully functional shared account and password management solution. There is a security loophole in the Devulsions Server 2025.2.15.0 and earlier versions, which stems from improper validation of the security Dashboard signed-tasks API, which may lead to a denial of service attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Devolutions
Published
2025-10-22
Last Modified
2026-02-24
References
https://devolutions.net/security/advisories/DEVO-2025-0015/ https://access.redhat.com/security/cve/cve-2025-11958
Patch
https://devolutions.net/security/advisories/DEVO-2025-0015/
Share on: