CVE-2026-3277 | Devolutions PowerShell Universal up to 2026.1.2 OpenID Connect Authentication Configuration authentication.ps1 cleartext storage (DEVO-2026-0006)

A vulnerability described as problematic has been identified in Devolutions PowerShell Universal up to 2026.1.2. The affected element is an unknown function of the file .universal/authentication.ps1 of the component OpenID Connect Authentication Configuration. Executing a manipulation can lead to cleartext storage of sensitive information.

This vulnerability appears as CVE-2026-3277. The attacker needs to be present on the local network. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More