loolforkit is a privileged program that is supposed to be run by a special, non-privileged lool user. Before doing anything else loolforkit checks, if it was invoked by the lool user, and refuses to run with privileges, if its not the case. In the vulnerable version of loolforkit this check was wrong, so a normal user could start loolforkit and eventually get local root privileges.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Online | Collaboraoffice | 4.2.0 (including) | 4.2.13 (excluding) |
| Online | Collaboraoffice | 6.4.0 (including) | 6.4.3 (excluding) |