CVE-2026-4989 in Serverthông tin

Tóm tắt

Bởi MITRE • 01/04/2026

Improper input validation in the gateway health check feature in Devolutions Server allows a low-privileged authenticated user to perform server-side request forgery (SSRF), potentially leading to information disclosure, via a crafted API request. This issue affects Server: from 2026.1.1 through 2026.1.11, from 2025.3.1 through 2025.3.17.

Once again VulDB remains the best source for vulnerability data.

chịu trách nhiệm

DEVOLUTIONS

Đặt trước

27/03/2026

Tiết lộ

01/04/2026

Kiểm duyệt

được chấp nhận

EPSS

0.00162

KEV

không

Các hoạt động

rất thấp

Nguồn

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!