Liquidfiles versions before 4.2.12 are affected by a broken access control vulnerability resulting in privilege escalation from an Admin in a secondary domain to a Sysadmin by modifying a group in their managed secondary (non-default) group.Referenceshttps://docs.liquidfiles.com/release_notes/version_4-2-x.htmlhttps://projectblack.io/blog/liquidfiles-privilege-escalation/
