Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Improper input validation in the apps and endpoints configuration in PowerShell Universal before 2026.1.4 allows an authenticated user with permissions to create or modify Apps or Endpoints to override existing application or system routes, resulting in unintended request routing and denial of service via a conflicting URL path.
CVSS Information
N/A
Vulnerability Type
CWE-1289
Vulnerability Title
Devolutions PowerShell Universal 安全漏洞
Vulnerability Description
Devolutions PowerShell Universal是加拿大Devolutions公司的一个综合性PowerShell平台。 Devolutions PowerShell Universal 2026.1.4之前版本存在安全漏洞,该漏洞源于应用程序和端点配置输入验证不当,可能导致具有创建或修改应用程序或端点权限的已验证用户覆盖现有应用程序或系统路由,造成意外请求路由和通过冲突URL路径的拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A