CVE-2025-8353

Publication date

2025-07-30 16:06:46

Family

DEVOLUTIONS

State

PUBLISHED

Description

UI synchronization issue in the Just-in-Time (JIT) access request approval interface in Devolutions Server 2025.2.4.0 and earlier allows a remote authenticated attacker to gain unauthorized access to deleted JIT Groups via stale UI state during standard checkout request processing.