Volerion logoVolerion
Volerion logoVolerion

TDuckCloud tduck-platform Vertical Privilege Escalation Vulnerability

Vulnerability

A critical vertical privilege escalation vulnerability has been identified in TDuckCloud tduck-platform versions through 5.1. The issue resides in the AuthorizationInterceptor component, specifically within the preHandle function. This vulnerability allows attackers with normal user accounts to bypass authorization checks and access sensitive management APIs under the /manage/ path, which should be restricted to administrators. The flaw can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability allows for unauthorized access to management APIs, enabling normal users to perform actions or access resources intended for administrators.

Reproduction

To reproduce this vulnerability, log in as a normal user and attempt to access a management API, such as the user management endpoint. This will result in an authorization error. However, injecting a semicolon into the request path can bypass the authorization check and grant access to the API.

Added: Aug 9, 2025, 3:19 PM
Updated: Aug 9, 2025, 3:19 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
5.0
exploitability
4.6
remediation
7.7
relevance
0.3
threat
6.4
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.