Описание
LiquidFiles before 3.6.3 allows remote attackers to elevate their privileges from Admin (or User Admin) to Sysadmin.
LiquidFiles before 3.6.3 allows remote attackers to elevate their privileges from Admin (or User Admin) to Sysadmin.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2021-43397
- https://forum.liquidfiles.com/forums/news.6
- https://man.liquidfiles.com/release_notes/version_3-6-x.html
- http://packetstormsecurity.com/files/164997/LiquidFiles-3.5.13-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2021/Nov/40
- http://seclists.org/fulldisclosure/2021/Nov/52
Связанные уязвимости
CVSS3: 8.8
nvd
около 4 лет назад
LiquidFiles before 3.6.3 allows remote attackers to elevate their privileges from Admin (or User Admin) to Sysadmin.