CVE-2026-14536
Vulnerability Description
Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows an attacker with valid user credentials to bypass the MFA Required policy and authenticate without completing multi-factor authentication. The problem occurs when DVLS encounters an invalid default MFA value.
Vulnerability Details
Published Date
Last Modified
Source
NVD
Vendor
Devolutions
Product
Server
Discussion (0)
Add Comment
No comments yet. Be the first!