CVE-2026-15058
UNKNOWN
NVD
CVSS Score
0
Severity
UNKNOWN
Published
Jul 14, 2026
Vendor
unknown
Description
Improper authorization in the secure messages deletion endpoint in Devolutions Server 2026.2.11, 2026.1.22 allows an authenticated user to delete another user's messages via a direct object reference to the message identifier.