Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An overly permissive CORS policy in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows a remote attacker to leak cross-origin data via a crafted HTML page.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Devolutions Server 访问控制错误漏洞
Vulnerability Description
Devolutions Server是加拿大Devolutions公司的一个应用系统。提供功能齐全的共享帐户和密码管理解决方案。 Devolutions Server 2021.1之前版本和Devolutions Server LTS 2020.3.18之前版本存在安全漏洞,该漏洞允许远程攻击者可利用该漏洞通过精心制作的HTML页面泄漏跨源数据。
CVSS Information
N/A
Vulnerability Type
N/A