An overly permissive CORS policy in Devolutions Server prior to 2021.1 and Devolutions Server LTS prior to 2020.3.18 allows a remote malicious user to leak cross-origin data via a crafted HTML page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|