Security Advisory

CVE-2025-8353

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-30 16:06:46

Last updated 2025-07-30 16:17:38

Assigner DEVOLUTIONS

State PUBLISHED

Description

UI synchronization issue in the Just-in-Time (JIT) access request approval interface in Devolutions Server 2025.2.4.0 and earlier allows a remote authenticated attacker to gain unauthorized access to deleted JIT Groups via stale UI state during standard checkout request processing.

← Browse all CVEs View on cve.org ↗