CVE-2023-2445

Publication date

2023-05-02 13:11:06

Family

DEVOLUTIONS

State

PUBLISHED

Description

Improper access control in Subscriptions Folder path filter in Devolutions Server 2023.1.1 and earlier allows attackers with administrator privileges to retrieve usage information on folders in user vaults via a specific folder name.