Improper access control in Subscriptions Folder path filter in Devolutions Server 2023.1.1 and earlier allows attackers with administrator privileges to retrieve usage information on folders in user vaults via a specific folder name.
References
Link | Resource |
---|---|
https://devolutions.net/security/advisories/DEVO-2023-0013/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: DEVOLUTIONS
Published: 2023-05-02T13:11:06.405Z
Updated: 2023-05-02T13:11:06.405Z
Reserved: 2023-05-01T14:10:14.917Z
Link: CVE-2023-2445
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-05-02T14:15:09.207
Modified: 2023-05-09T17:25:41.957
Link: CVE-2023-2445
JSON object: View
Redhat Information
No data.
CWE