CNNVD-202601-3053 Information

CNNVD ID

CNNVD-202601-3053

Related CVE

CVE-2026-1007

• CNNVD Published: 2026-01-19

Description (Chinese)

Devolutions Server是加拿大Devolutions公司的一个应用系统。提供功能齐全的共享帐户和密码管理解决方案。 Devolutions Server 2025.3.12及之前版本存在安全漏洞，该漏洞源于虚拟网关组件授权不当，可能导致攻击者绕过拒绝IP规则。

Description (English)

The Defenses Server is an application of the Canadian Defenses Corporation. Provide a fully functional shared account and password management solution. There is a security loophole in the Devulsions Server 2025.3.12 and earlier versions, which stems from inappropriate authorization of virtual gateway components, which may lead the attackers to circumvent the rejection of IP rules.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Devolutions

Published

2026-01-19

Last Modified

2026-02-24

References

https://devolutions.net/security/advisories/DEVO-2026-0003/ https://access.redhat.com/security/cve/cve-2026-1007

Patch

https://devolutions.net/security/advisories/DEVO-2026-0003/