CVE-2023-6264

Summary

Information leak in Content-Security-Policy header in Devolutions Server 2023.3.7.0 allows an unauthenticated attacker to list the configured Devolutions Gateways endpoints.

Affected Software

VendorProductVersion RangeStatus
DevolutionsServer0 <= 2023.3.7affected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References