Security Advisory

CVE-2025-3517

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-01 18:26:22

Last updated 2025-05-02 12:21:00

Assigner DEVOLUTIONS

State PUBLISHED

Description

Incorrect privilege assignment in PAM JIT elevation feature in Devolutions Server 2025.1.5.0 and earlier allows a PAM user to elevate a previously configured user configured in a PAM JIT account via failure to update the internal account’s SID when updating the username.

← Browse all CVEs View on cve.org ↗