CVE-2025-2280

Improper access control in web extension restriction feature in Devolutions Server 2024.3.4.0

and earlier allows an authenticated user to bypass the browser extension restriction feature.

More information : https://devolutions.net/security/advisories/DEVO-2025-0004/