How severe is CVE-2025-2003?

CVE-2025-2003 has a CVSS v3 score of 7.1 (HIGH).

CVE-2025-2003

Name: devolutions_server
Author: devolutions

7.1HIGH

Incorrect authorization in PAM vaults in Devolutions Server 2024.3.12 and earlier allows an authenticated user to bypass the 'add in root' permission.

发布于: 3/5/2025更新于: 3/28/2025

描述

Incorrect authorization in PAM vaults in Devolutions Server 2024.3.12 and earlier allows an authenticated user to bypass the 'add in root' permission.

AI分析AI驱动

受影响产品

devolutionsdevolutions_server

参考资料

https://devolutions.net/security/advisories/DEVO-2025-0003/
Vendor Advisory