CVE Vulnerabilities

CVE-2023-2445

Published: May 02, 2023 | Modified: Jan 30, 2025
CVSS 3.x
4.9
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

Improper access control in Subscriptions Folder path filter in Devolutions Server 2023.1.1 and earlier allows attackers with administrator privileges to retrieve usage information on folders in user vaults via a specific folder name.

Affected Software

Name Vendor Start Version End Version
Devolutions_server Devolutions * 2023.1.3.0 (excluding)

References