LiuOS security bypass | CVE-2022-46179
DESCRIPTION
LiuOS could allow a local attacker to bypass security restrictions, caused by improper authentication validation. By sending a specially-crafted request, an attacker could exploit this vulnerability to set the GITHUB_ACTIONS environment variable to anything other than null or true to bypass authentication validation.
CVSS 3.0 Information
- Privileges Required: None
- User Interaction: None
- Scope: Unchanged
- Access Vector: Local
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on Patreon using the button below
To keep up to date follow us on the below channels.
Click Above for Telegram Click Above for Discord Click Above for Reddit Click Above For LinkedIn NAME
LiuOS security bypass
- Platforms Affected:
LiuOS LiuOS - Risk Level:
8 - Exploitability:
Unproven - Consequences:
Bypass Security
DESCRIPTION
LiuOS could allow a local attacker to bypass security restrictions, caused by improper authentication validation. By sending a specially-crafted request, an attacker could exploit this vulnerability to set the GITHUB_ACTIONS environment variable to anything other than null or true to bypass authentication validation.
CVSS 3.0 Information
- Privileges Required: None
- User Interaction: None
- Scope: Unchanged
- Access Vector: Local
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on Patreon using the button below
To keep up to date follow us on the below channels.
Click Above for Telegram Click Above for Discord Click Above for Reddit Click Above For LinkedIn
- Platforms Affected:
