Unauthorized Access to Device Management Functionality Resolved

Users who did not have permissions to manage devices had potential access to Device functionality by entering an URL in their browser that linked them to a Device page. No known exploitation has occurred. This security loophole is now remedied.