Insecure Permission Inheritance in Devolutions Server (before 2022.2)

Insecure Permission Inheritance in Devolutions Server (before 2022.2)

CVE-2022-33996 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Incorrect permission management in Devolutions Server before 2022.2 allows a new user with a preexisting username to inherit the permissions of that previous user.

Learn more about our Cis Benchmark Audit For Server Software.