CVE-2025-2003 Information

Description

Incorrect authorization in PAM vaults in Devolutions Server 2024.3.12 and earlier allows an authenticated user to bypass the ‘add in root’ permission.

Reference

https://devolutions.net/security/advisories/DEVO-2025-0003/