Primary

Context

Devolutions Server Improper Privilege Management Vulnerability Allowing Account Impersonation

Vulnerability

Patched

A vulnerability exists in Devolutions Server in versions through 2025.3.5.0, where improper privilege management during pre-MFA cookie handling allows low-privileged authenticated users to impersonate other accounts by replaying pre-MFA cookies. However, this does not bypass the MFA verification step for the target account.

Impact

Exploitation of this vulnerability allows for account impersonation, where a low-privileged user can act as another user, although the target's MFA verification is still required.

Remediation

Users are advised to upgrade to Devolutions Server version 2025.3.6.0 or higher.

Added: Nov 6, 2025, 6:16 PM

Updated: Nov 6, 2025, 10:20 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

5.0

exploitability

5.2

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

5.0

exploitability

5.2

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Devolutions Server Improper Privilege Management Vulnerability Allowing Account Impersonation

Vulnerability

Impact

Remediation

Affected Products

Devolutions Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating