Version 2026.1.23.0 (July 14, 2026)

Version 2026.1.23.0 (July 14, 2026)

avatar

If you are using a client (RDM, PowerShell, etc.), version 2026.1 is required for this DVLS version

FIXES

  • SECURITY CVE-2026-12755 PAM - Improved security by preventing LDAP redirection attacks against Active Directory browse endpoints
  • SECURITY CVE-2026-15058 Core - Improved security by preventing users from deleting another user's messages
  • SECURITY CVE-2026-15637 PAM - Improved security by preventing unauthorized access to SSH private keys
  • SECURITY CVE-2026-15641 Core - Improved security by preventing users from approving their own pending access requests
  • Core - Fixed an issue where Microsoft/Entra users with YubiKey MFA could intermittently become stuck in a login loop
  • Web - Fixed an issue where custom entry images could appear on the wrong entries after refreshing within a folder


** CONSOLE RELEASE NOTES **

FIXES

  • SECURITY CVE-2026-15642 Core - Improved security by preventing Azure Key Vault secrets from being exposed in recovery kits when sensitive data is excluded

All Comments (0)