PatchSiren cyber security CVE debrief
CVE-2026-10544 Devolutions CVE debrief
CVE-2026-10544 is a medium-severity vulnerability in Devolutions Server, which allows an authenticated user with write access to a vault to execute arbitrary commands on systems managed by the affected PAM provider. The issue arises from improper neutralization of special elements in built-in PAM provider password rotation templates.
- Vendor
- Devolutions
- Product
- Devolutions Server
- CVSS
- MEDIUM 6.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-08
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-08
- Advisory updated
- 2026-06-12
Who should care
Users of Devolutions Server, particularly those with write access to vaults, should be aware of this vulnerability. Administrators of systems managed by the affected PAM provider should also take note.
Technical summary
The vulnerability affects Devolutions Server versions 2026.2.4.0 and 2026.1.20.0 and earlier. It is caused by improper neutralization of special elements in built-in PAM provider password rotation templates, allowing authenticated users with write access to a vault to execute arbitrary commands.
Defensive priority
MEDIUM
Recommended defensive actions
- Update to a non-vulnerable version of Devolutions Server.
- Restrict write access to vaults to only necessary users.
- Monitor systems managed by the affected PAM provider for suspicious activity.
Evidence notes
The CVE-2026-10544 vulnerability has been analyzed and verified by official sources.
Official resources
-
CVE-2026-10544 CVE record
CVE.org
-
CVE-2026-10544 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
CVE-2026-10544 was published on 2026-06-08T19:16:34.113Z and modified on 2026-06-12T18:07:47.973Z.