A vulnerability identified as critical has been detected in Devolutions Server up to 2025.3.19.0/2026.1.15.0 . This impacts an unknown function of the component Notification Management Endpoint . This manipulation causes missing authorization. This vulnerability is registered as CVE-2026-5146 . Remote exploitation of the attack is possible. No exploit is available.