CVE-2026-12673

NONE

Risk Signal Score5/100 — NIEDRIG

Beschreibung

Liquidfiles versions before 4.2.12 are affected by a broken access control vulnerability resulting in privilege escalation from an Admin in a secondary domain to a Sysadmin by modifying a group in their managed secondary (non-default) group.

Referenzen

https://docs.liquidfiles.com/release_notes/version_4-2-x.html
https://projectblack.io/blog/liquidfiles-privilege-escalation/