Vulnerabilities > Devolutions > Devolutions Server > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-06-20 | CVE-2023-2400 | Incomplete Cleanup vulnerability in Devolutions Server Improper deletion of resource in the user management feature in Devolutions Server 2023.1.8 and earlier allows an administrator to view users vaults of deleted users via database access. | 2.7 |
2022-07-06 | CVE-2022-2316 | Cross-site Scripting vulnerability in Devolutions Server HTML injection vulnerability in secure messages of Devolutions Server before 2022.2 allows attackers to alter the rendering of the page or redirect a user to another site. | 3.5 |