Yeqifu Warehouse Improper Access Control Vulnerability in Cache Management Endpoints

A vulnerability exists in Yeqifu Warehouse versions up to commit aaf29962ba407d22d991781de28796ee7b4670e4. The issue arises in the Cache Sync Handler component, specifically within the CacheController.java file. The vulnerability allows any authenticated user to bypass authorization checks on cache management endpoints, including deleteCache, removeAllCache, and syncCache. This lack of proper access control can lead to performance issues, exposure of stale data, and unstable application behavior. The vulnerability can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability allows for improper access control, enabling authenticated users to perform cache management actions without authorization. This could result in degraded application performance, exposure of outdated or incorrect data, and overall instability in application behavior.

Reproduction

To reproduce this vulnerability, an authenticated user can send a POST request to the '/cache/removeAllCache' endpoint without any authorization. The absence of permission checks allows the request to be processed, clearing all cached data and potentially disrupting application performance and stability.