CVE-2024-1898 Information

Description

Improper access control in the notification feature in Devolutions Server 2023.3.14.0 and earlier allows a low privileged user to change notifications settings configured by an administrator.

Reference

https://devolutions.net/security/advisories/DEVO-2024-0002