Vulnerabilities
Vulnerable Software
Improper authentication in the external OAuth authentication flow in Devolutions Server 2026.1.11 and earlier allows an authenticated user to authenticate as other users, including administrators, via reuse of a session code from an external authentication flow.
CVSS Score
5.4
EPSS Score
0.002
Published
2026-04-01
Improper certificate validation in the PAM propagation WinRM connections allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification.
CVSS Score
8.1
EPSS Score
0.001
Published
2026-03-20


Contact Us

Shodan ® - All rights reserved