CVE-2021-25630
HIGHCollabora Online 4.2.0-4.2.12 - Privilege Escalation via loolforkit User Check Bypass
Title source: llmDescription
"loolforkit" is a privileged program that is supposed to be run by a special, non-privileged "lool" user. Before doing anything else "loolforkit" checks, if it was invoked by the "lool" user, and refuses to run with privileges, if it's not the case. In the vulnerable version of "loolforkit" this check was wrong, so a normal user could start "loolforkit" and eventually get local root privileges.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
https://github.com/CollaboraOnline/online/security/advisories/GHSA-49w3-gr3w-m68v
Mailing List, Third Party Advisory x_refsource_misc
https://www.openwall.com/lists/oss-security/2021/01/18/3
Scores
CVSS v3
7.8
EPSS
0.0031
EPSS Percentile
22.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-269
Status
published
Products (1)
collaboraoffice/online
4.2.0 - 4.2.13
Published
Feb 23, 2021
Tracked Since
Feb 18, 2026