cve/CVE-2024-2918.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

745 B

Raw Permalink Blame History

CVE-2024-2918

Description

Improper input validation in PAM JIT elevation feature in Devolutions Server 2024.1.6 and earlier allows an attacker with access to the PAM JIT elevation feature to forge the displayed group in the PAM JIT elevation checkout request via a specially crafted request.

POC

Reference

https://devolutions.net/security/advisories/DEVO-2024-0006

Github

No PoCs found on GitHub currently.

745 B Raw Permalink Blame History

CVE-2024-2918

Description

POC

Reference

Github

745 B

Raw Permalink Blame History