PatchSiren cyber security CVE debrief
CVE-2026-10787 Devolutions CVE debrief
CVE-2026-10787 is a medium-severity vulnerability in Devolutions Server, allowing an authenticated low-privileged user to enumerate metadata of deleted user groups via a crafted API request. This issue affects Devolutions Server 2026.2.4.0 and 2026.1.20.0 and earlier.
- Vendor
- Devolutions
- Product
- Devolutions Server
- CVSS
- MEDIUM 4.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-08
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-08
- Advisory updated
- 2026-06-12
Who should care
Users of Devolutions Server, particularly those with low-privileged user accounts, should be aware of this vulnerability and take steps to mitigate it.
Technical summary
The vulnerability is caused by missing authorization in the deleted user groups API. An authenticated low-privileged user can exploit this vulnerability by sending a crafted API request, allowing them to enumerate metadata of deleted user groups.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply the patches or updates provided by Devolutions to address this vulnerability.
- Restrict access to the deleted user groups API to only authorized users.
- Monitor API requests for suspicious activity.
Evidence notes
This vulnerability has a CVSS score of 4.3 and is classified as MEDIUM severity.
Official resources
-
CVE-2026-10787 CVE record
CVE.org
-
CVE-2026-10787 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
CVE-2026-10787 was published on [2026-06-08T19:16:34.553Z](https://www.cve.org/CVERecord?id=CVE-2026-10787) and modified on [2026-06-12T17:56:32.340Z](https://nvd.nist.gov/vuln/detail/CVE-2026-10787).