Velocidex Velociraptor has an authorization bypass vulnerability

GHSA-3c93-g9g6-p5j4 · CVE-2026-7573

Published May 6, 2026 · Modified May 11, 2026

Description

An authorization bypass (CWE-639) in the GetUserRoles gRPC API endpoint in Velocidex Velociraptor below version 0.76.5 allows any authenticated low-privilege user to retrieve the complete ACL policy (roles and permissions) for any user across all organizations by supplying targeted Name and Org parameters via a network request.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2026-7573
WEB https://docs.velociraptor.app/announcements/advisories/cve-2026-7573
PACKAGE https://github.com/Velocidex/velociraptor

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes