PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-12673 liquidfiles CVE debrief

CVE-2026-12673 is a medium-severity vulnerability in Liquidfiles versions before 4.2.12. It is caused by a broken access control issue that allows privilege escalation from an Admin in a secondary domain to a Sysadmin by modifying a group in their managed secondary (non-default) group. The CVSS score for this vulnerability is 5.9. The vulnerability was published on June 20, 2026. Defenders should assess their exposure, focusing on Liquidfiles instances and user privilege management. This issue requires immediate attention to limit the potential for attackers to exploit the vulnerability and escalate privileges within the affected systems.

Vendor
liquidfiles
Product
Unknown
CVSS
MEDIUM 5.9
CISA KEV
Not listed in stored evidence
Original CVE published
2026-06-20
Original CVE updated
2026-06-22
Advisory published
2026-06-20
Advisory updated
2026-06-22

Who should care

Organizations using Liquidfiles versions before 4.2.12 should prioritize patching this vulnerability. Specifically, administrators of secondary domains who manage groups and users within those domains are at risk. This vulnerability could allow an attacker to escalate privileges from an Admin in a secondary domain to a Sysadmin, potentially leading to unauthorized access and control over the system. Therefore, it is crucial for these administrators to assess their current version of Liquidfiles and plan for an upgrade to version 4.2.12 or later.

Technical summary

The vulnerability, CVE-2026-12673, affects Liquidfiles versions before 4.2.12. It is characterized by a broken access control issue, which enables an Admin in a secondary domain to escalate privileges to a Sysadmin level. This is achieved by modifying a group in their managed secondary (non-default) group. The Common Vulnerabilities and Exposures (CVE) score for this vulnerability is 5.9, indicating a medium severity level. The vulnerability was published on June 20, 2026. The CVSS vector for this vulnerability is CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. The weakness associated with this vulnerability is CWE-285, Improper Authorization.

Defensive priority

Medium priority due to potential for privilege escalation and unauthorized access

Recommended defensive actions

  • Inventory Liquidfiles instances to identify versions before 4.2.12
  • Review and limit exposure of secondary domain Admin accounts
  • Plan for an upgrade to Liquidfiles version 4.2.12 or later
  • Monitor for suspicious group modification activities
  • Review and enforce strict access controls for group management

Evidence notes

The primary evidence for this vulnerability comes from the CVE record and the NVD detail page. The vulnerability affects Liquidfiles versions before 4.2.12. The CVSS score is 5.9, indicating a medium severity. The weakness associated with this vulnerability is CWE-285, Improper Authorization. Defenders should verify the current version of Liquidfiles in use and assess the risk of privilege escalation within their environments. Official sources, such as the Liquidfiles release notes and security advisories, should be consulted for detailed information on patching and mitigation strategies.

Official resources

This article is AI-assisted and based on the supplied source corpus.