devolutions devolutions_server CVE Vulnerabilities (106)

CVEs: 106 CPE versions: View versions table

Summary

This page lists publicly disclosed CVE vulnerabilities affecting devolutions devolutions_server (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.

Showing 101106 of 106 CVEs
«« First « Prev Page 6 / 6 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2021-28157 An SQL Injection issue in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows an administrative user to execute arbitrary SQL commands via a username in api/security/userinfo/delete. [email protected] 7.2 0.84% 2021-04-14 2026-06-16
CVE-2021-28048 An overly permissive CORS policy in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows a remote attacker to leak cross-origin data via a crafted HTML page. [email protected] 6.5 0.57% 2021-04-14 2026-06-16
CVE-2021-23925 An issue was discovered in Devolutions Server before 2020.3. There is a cross-site scripting (XSS) vulnerability in entries of type Document. [email protected] 6.1 0.59% 2021-04-01 2026-06-16
CVE-2021-23924 An issue was discovered in Devolutions Server before 2020.3. There is an exposure of sensitive information in diagnostic files. [email protected] 7.5 1.00% 2021-04-01 2026-06-16
CVE-2021-23923 An issue was discovered in Devolutions Server before 2020.3. There is Broken Authentication with Windows domain users. [email protected] 8.1 0.76% 2021-04-01 2026-06-16
CVE-2021-23921 An issue was discovered in Devolutions Server before 2020.3. There is broken access control on Password List entry elements. [email protected] 9.1 1.00% 2021-04-01 2026-06-16
«« First « Prev Page 6 / 6 Next »
cvelogic Threat Intelligence