cbcvebase.
CVE-2024-1764
published 2024-03-05

CVE-2024-1764: Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3.14.0 and earlier allows a user to continue using the elevated…

PriorityP346high7.6CVSS 3.1
AVNACLPRLUINSUCHILAL
EPSS
0.36%
28.1th percentile
Improper privilege management in Just-in-time (JIT) elevation module in Devolutions Server 2023.3.14.0 and earlier allows a user to continue using the elevated privilege even after the expiration under specific circumstances

Affected

2 ranges
VendorProductVersion rangeFixed in
devolutionsdevolutions_server< 2023.3.16.02023.3.16.0
devolutionsserver<= 2023.3.14.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.