| 제목 | Open-Source LitmusChaos 3.19.0 Privilege Escalation via Manipulation of localStorage |
|---|
| 설명 | A privilege escalation vulnerability was discovered in the LitmusChaos platform, where a user with Viewer-level permissions can elevate their privileges to Owner by tampering with the projectRole key stored in the browser’s localStorage. This manipulation is not validated by the backend, leading to unauthorized access to privileged functionality.
During analysis, it was observed that user roles within a project are determined on the client side using a localStorage key named projectRole. By modifying this key’s value from "Viewer" to "Owner" using browser developer tools and reloading the page, the frontend updates to reflect elevated access rights.
This change allows users to access Owner-only functionality, such as creating, modifying, or deleting experiments, without any backend verification of their actual role within the project.
Impact
Unauthorized privilege escalation
Potential misuse or alteration of experiments and project configurations
No server-side validation of user roles |
|---|
| 원천 | ⚠️ https://github.com/MaiqueSilva/VulnDB/blob/main/readme07.md |
|---|
| 사용자 | maique (UID 88562) |
|---|
| 제출 | 2025. 07. 31. AM 04:36 (9 개월 ago) |
|---|
| 모더레이션 | 2025. 08. 09. AM 07:34 (9 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 319325 [LitmusChaos Litmus 까지 3.19.0 LocalStorage 권한 상승] |
|---|
| 포인트들 | 20 |
|---|