{"id":66754,"date":"2025-07-22T23:31:48","date_gmt":"2025-07-22T20:01:48","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-6741-devolutions-server-secure-message-component-unauthorized-access-stealing-vulnerability\/"},"modified":"2025-07-22T23:31:48","modified_gmt":"2025-07-22T20:01:48","slug":"cve-2025-6741-devolutions-server-secure-message-component-unauthorized-access-stealing-vulnerability","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-6741-devolutions-server-secure-message-component-unauthorized-access-stealing-vulnerability\/","title":{"rendered":"CVE-2025-6741 &#8211; Devolutions Server Secure Message Component Unauthorized Access Stealing Vulnerability"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-6741<br \/>\n<br \/>\n<strong>Published : <\/strong> July 22, 2025, 5:15 p.m. | 1\u00a0hour, 44\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>Improper access control in secure message component in Devolutions Server allows an authenticated user to steal unauthorized entries via the secure message entry attachment feature<\/p>\n<p>This issue affects the following versions :<\/p>\n<p>  *  Devolutions Server 2025.2.2.0 through 2025.2.4.0<br \/>\n  *<br \/>\nDevolutions Server 2025.1.11.0 and earlier<br \/>\n<br \/>\n<strong>Severity:<\/strong> 0.0 | NA<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-6741 Published : July 22, 2025, 5:15 p.m. | 1\u00a0hour, 44\u00a0minutes ago Description : Improper access control in secure message component in Devolutions Server allows an authenticated user to steal unauthorized entries via the secure message entry attachment feature This issue affects the following versions : * Devolutions Server 2025.2.2.0 through 2025.2.4.0 &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-66754","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/66754","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=66754"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/66754\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=66754"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=66754"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=66754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}