Improper input validation in PAM JIT elevation feature in Devolutions Server 2024.1.11.0 and earlier allows an authenticated user with access to the PAM JIT elevation feature to manipulate the LDAP filter query via a specially crafted request.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://devolutions.net/security/advisories/DEVO-2024-0007 |
![]() ![]() |
History
Tue, 19 Nov 2024 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: DEVOLUTIONS
Published: 2024-05-17T15:18:15.722Z
Updated: 2024-11-19T22:10:34.141Z
Reserved: 2024-05-17T15:05:56.157Z
Link: CVE-2024-5072

Updated: 2024-08-01T21:03:10.490Z

Status : Awaiting Analysis
Published: 2024-05-17T16:15:08.300
Modified: 2024-11-21T09:46:54.310
Link: CVE-2024-5072

No data.