Improper access control in PAM propagation scripts in...
High severity
Unreviewed
Published
Oct 13, 2023
to the GitHub Advisory Database
•
Updated Sep 18, 2024
Description
Published by the National Vulnerability Database
Oct 13, 2023
Published to the GitHub Advisory Database
Oct 13, 2023
Last updated
Sep 18, 2024
Improper access control in PAM propagation scripts in Devolutions Server 2023.2.8.0 and ealier allows an attack with permission to manage PAM propagation scripts to retrieve passwords stored in it via a GET request.
References