VYPR
Unrated severityNVD Advisory· Published May 28, 2025· Updated May 28, 2025

CVE-2025-4493

CVE-2025-4493

Description

Improper privilege assignment in PAM JIT privilege sets in Devolutions Server allows a PAM user to perform PAM JIT requests on unauthorized groups by exploiting a user interface issue.

This issue affects the following versions :

  • Devolutions Server 2025.1.3.0 through 2025.1.7.0
  • Devolutions Server 2024.3.15.0 and earlier

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: >= 2024.3.15.0 < 2025.1.3.0, = 2025.1.3.0 - 2025.1.7.0
  • Devolutions/Serverv5
    Range: 2025.1.3.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.