Privilege escalation issue in the Rucio WebUI #4928
Comments
bari12
changed the title
bari12
added a commit
to bari12/rucio
that referenced
this issue
Oct 21, 2021
bari12
changed the title
bari12
added a commit
to bari12/rucio
that referenced
this issue
Oct 21, 2021
bari12
added a commit
that referenced
this issue
Oct 21, 2021
…escalation WebUI: Fix privilege escalation; Fix #4928
bari12
added a commit
that referenced
this issue
Oct 21, 2021
bari12
added a commit
that referenced
this issue
Oct 21, 2021
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Motivation
The move to FLASK as a webui backend introduced a cookie leak in the auth_token workflows of the webui. This potentially leak the contents of cookies to other sessions. Impact is that Rucio authentication tokens are leaked to other users accessing the webui within a close timeframe, thus allowing users accessing the webui with the leaked authentication token. Privileges are therefore also escalated.
Modification
The underlying issue is that one of the cooke variables is defined as global, thus leaking within the wsgi_container in sessions executed in close time. A fix is currently in preparation.
Related issue is #4810
The text was updated successfully, but these errors were encountered: