Improper Authorization in User Management to Vertical Privilege Escalation in pandorafms/pandorafms
Feb 25th 2022
Pandora FMS v7.0NG.759 allows improper authorization in User Management where any authenticated user with access to the User Management module could create, modify, delete any user with full admin privilege. The impact could lead to vertical privilege escalation to access the privileges of a higher-level user or typically an admin user.
Proof of Concept
1 POST http://$HOST/pandora_console/index.php?sec=gusuarios&sec2=godmode/users/configure_user&pure=0
2 POST http://$HOST/pandora_console/index.php?sec=gusuarios&sec2=godmode/users/user_list&pure=0
This vulnerability is capable of modifying higher privilege accounts thus leading to vertical privilege escalation.