CVE-2026-0618

Medium CVSS: 6.1

Cross-site Scripting vulnerability in Devolutions PowerShell Universal.This issue affects Powershell Universal: before 4.5.6, before 5.6.13.

Vendor

Product

CWE

Yayın Tarihi

2026-01-07 17:16:02

Güncelleme

2026-01-30 01:41:53

Source Identifier

security@devolutions.net

KEV Date Added

CWE-79 Powershell Universal MEDIUM Ironmansoftware 2026

https://devolutions.net/security/advisories/DEVO-2026-0001/

Medium

CVE-2026-3563

Improper input validation in the apps and endpoints configuration in PowerShell Universal before 2026.1.4 allows an auth…

High

CVE-2026-4064

Missing authorization checks on multiple gRPC service endpoints in PowerShell Universal before 2026.1.4 allows an authen…

Medium

CVE-2026-3277

The OpenID Connect (OIDC) authentication configuration in PowerShell Universal before 2026.1.3 stores the OIDC client s…