CVE-2026-9522EPSS p3.5%

CVE-2026-9522CVE-2026-9522

devolutions / devolutions_server

Description

Improper access control in the PAM account discovery feature in Devolutions Server 2026.1.19 and earlier allows an authenticated user without administrative privileges to delete network discovery scan configurations.

Scoring

CVSS 5.4 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
EPSS0.14% probability of exploitation · percentile 3.5% · 2026-06-19T12:03:05Z
Last modified2026-06-02

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-3130
CVE
CVE-2026-9590
CVE
CVE-2026-10544
CVE
CVE-2026-10787
CVE
CVE-2025-4433
CVE
CVE-2025-2280
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.