Description
Improper neutralization of special elements in the built-in PAM provider password rotation templates in Devolutions Server allows an authenticated user with write access to a vault to execute arbitrary commands on the systems managed by the affected PAM provider.

This issue affects :

* Devolutions Server 2026.2.4.0
* Devolutions Server 2026.1.20.0 and earlier
Published: 2026-06-08
Score: 6.5 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Improper neutralization of special elements in the built-in PAM provider password rotation templates allows an authenticated user with write access to a vault to execute arbitrary commands on the systems managed by the affected PAM provider. This flaw enables the attacker to run any shell command with the privileges of the PAM provider service, compromising confidentiality, integrity, and availability of the managed target systems.

Affected Systems

The vulnerability affects Devolutions Server versions 2026.2.4.0 and 2026.1.20.0, as well as all earlier releases. The affected product is Devolutions:Server, delivering privileged access management capabilities to enterprise environments.

Risk and Exploitability

The CVSS score of 6.5 indicates moderate severity. The EPSS score is not available, so the overall exploitation probability cannot be precisely quantified. However, the flaw is listed in CISA’s KEV catalog as not listed, indicating no known active exploitation at this time. The attack vector requires an authenticated user with write permissions to a vault, meaning the threat is limited to trusted internal users or compromised accounts. Once executed, the attacker can achieve full command‑execution privilege on any managed host through the PAM provider.

Generated by OpenCVE AI on June 8, 2026 at 21:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor patch to a non‑affected release of Devolutions Server (refer to the advisory for the latest version).
  • Restrict vault write permissions to a narrow set of trusted administrators until the patch is applied.
  • Disable or remove the vulnerable PAM provider password rotation templates until a secure version is released.

Generated by OpenCVE AI on June 8, 2026 at 21:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 08 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Devolutions
Devolutions server
Vendors & Products Devolutions
Devolutions server

Mon, 08 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 08 Jun 2026 19:00:00 +0000

Type Values Removed Values Added
Description Improper neutralization of special elements in the built-in PAM provider password rotation templates in Devolutions Server allows an authenticated user with write access to a vault to execute arbitrary commands on the systems managed by the affected PAM provider. This issue affects : * Devolutions Server 2026.2.4.0 * Devolutions Server 2026.1.20.0 and earlier
Weaknesses CWE-78
References

Subscriptions

Devolutions Server
cve-icon MITRE

Status: PUBLISHED

Assigner: DEVOLUTIONS

Published:

Updated: 2026-06-08T19:53:47.082Z

Reserved: 2026-06-01T12:42:59.227Z

Link: CVE-2026-10544

cve-icon Vulnrichment

Updated: 2026-06-08T19:53:33.477Z

cve-icon NVD

Status : Received

Published: 2026-06-08T19:16:34.113

Modified: 2026-06-08T21:16:26.663

Link: CVE-2026-10544

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-08T21:30:06Z

Weaknesses