Permission bypass when importing or synchronizing entriesĀ in User vault
in Devolutions Server 2022.3.13 and prior versions allows users with restricted rights to bypass entry permission via id collision.
References
Link | Resource |
---|---|
https://devolutions.net/security/advisories/DEVO-2023-0008 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: DEVOLUTIONS
Published: 2023-03-23T17:13:31.049Z
Updated: 2023-04-02T18:49:20.069507Z
Reserved: 2023-03-23T15:48:10.734Z
Link: CVE-2023-1603
JSON object: View
NVD Information
Status : Modified
Published: 2023-04-02T21:15:08.427
Modified: 2023-11-07T04:04:17.163
Link: CVE-2023-1603
JSON object: View
Redhat Information
No data.
CWE