← back
CVE-2026-9247

CVE-2026-9247

CVSS 2.4 LOWEPSS 0.2%CWE-778
Insufficient logging in the entry export feature in Devolutions Server allows an authenticated user with export permissions to export a sealed entry without triggering the unseal notification to administrators via a crafted export request. This issue affects : * Devolutions Server 2026.1.6.0 through 2026.1.16.0 * Devolutions Server 2025.3.20.0 and earlier
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
Affected products
Devolutions · Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://devolutions.net/security/advisories/DEVO-2026-0013/