Incorrect Authorization vulnerability in virtual gateway component in Devolutions Server allows attackers to bypass deny IP rules
Description
Incorrect Authorization vulnerability in virtual gateway component in Devolutions Server allows attackers to bypass deny IP rules
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: Shibby
PRODUCT: Tomato
AFFECTED_VERSIONS: See vendor advisory for affected versions
CONFIDENCE: low
MISSING: versions, patch, technical_details
---END_METADATA---
Description Summary:
A security vulnerability has been identified in Shibby Tomato 1 that may allow for unauthorized system interaction.
Executive Summary:
A critical vulnerability in Shibby Tomato firmware poses a high risk of compromise, necessitating immediate administrative review.
Vulnerability Details
CVE-ID: CVE-2026-10067
Affected Software: Shibby Tomato
Affected Versions: See vendor advisory for affected versions
Vulnerability: A vulnerability has been detected within the Shibby Tomato 1 platform. The nature of the flaw and the required authentication level for an attacker are not currently documented.
Business Impact
With a CVSS score of 8.8, this vulnerability represents a high-severity threat to network security. Compromise of router or firmware-level software often grants attackers broad visibility into network traffic, potentially leading to widespread internal data exposure or man-in-the-middle attacks.
Remediation Plan
Immediate Action: Check the Shibby project or associated firmware repositories for official security patches or recommended version upgrades.
Proactive Monitoring: Monitor network traffic for unusual outbound connections or unauthorized administrative logins to the device interface.
Compensating Controls: Isolate affected devices on a restricted management VLAN and ensure administrative interfaces are not exposed to the public internet.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of May 30, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Administrators should prioritize the security of their network edge devices. Verify the firmware version in use and apply updates as soon as the vendor provides remediation guidance to mitigate the risk of unauthorized network access.