Security Advisory

CVE-2026-3131

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-24 19:01:29

Last updated 2026-02-26 16:09:13

Assigner DEVOLUTIONS

State PUBLISHED

Description

Improper access control in multiple DVLS REST API endpoints in Devolutions Server 2025.3.14.0 and earlier allows an authenticated user with view-only permission to access sensitive connection data.

← Browse all CVEs View on cve.org ↗