AlertEnterprise Guardian Access Control Bypass Vulnerability in Request Building Access API
Vulnerability
A privilege escalation vulnerability has been identified in AlertEnterprise Guardian versions through 4.1.14.2.2.1. This issue allows remote authenticated users to bypass manager approval by modifying the user ID in a Request Building Access requestSubmit API call. The vulnerability resides in the access control mechanisms of the application, enabling unauthorized manipulation of access requests for other users.
Impact
Exploitation of this vulnerability allows authenticated users to manipulate access requests for others, bypassing established approval processes and potentially leading to unauthorized access rights.
Reproduction
To reproduce this vulnerability, an authenticated user can send a Request Building Access request through the requestSubmit API. By changing the user ID in the request, it's possible to alter access permissions for other users, effectively bypassing the normal approval workflow.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.