Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Improper input validation in PAM JIT elevation feature in Devolutions Server 2024.1.6 and earlier allows an attacker with access to the PAM JIT elevation feature to forge the displayed group in the PAM JIT elevation checkout request via a specially crafted request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Devolutions Server 安全漏洞
Vulnerability Description
Devolutions Server是加拿大Devolutions公司的一个应用系统。提供功能齐全的共享帐户和密码管理解决方案。 Devolutions Server 2024.1.10.0及之前版本存在安全漏洞,该漏洞源于不正确的输入验证,允许攻击者通过特制请求伪造PAM JIT提升签出请求中显示的组。
CVSS Information
N/A
Vulnerability Type
N/A