Improper Access Control in Subscriptions Folder Path Filter in Devolutions Server 2023.1.1 and Earlier

Improper Access Control in Subscriptions Folder Path Filter in Devolutions Server 2023.1.1 and Earlier

CVE-2023-2445 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Improper access control in Subscriptions Folder path filter in Devolutions Server 2023.1.1 and earlier allows attackers with administrator privileges to retrieve usage information on folders in user vaults via a specific folder name.

Learn more about our Cis Benchmark Audit For Server Software.