Back to CVE List

CVE-2026-14536

Vulnerability Description

Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows an attacker with valid user credentials to bypass the MFA Required policy and authenticate without completing multi-factor authentication. The problem occurs when DVLS encounters an invalid default MFA value.

Vulnerability Details

Published Date
Last Modified
Source
NVD
Vendor
Devolutions
Product
Server

External References

Discussion (0)

Add Comment

No comments yet. Be the first!