Skip to main content

Olivetin CVE-2026-30233

MEDIUM
Information Exposure (CWE-200)
2026-03-06 security-advisories@github.com GHSA-jf73-858c-54pg
6.5
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
SUSE
MEDIUM
qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

4
Analysis Generated
Mar 12, 2026 - 22:06 vuln.today
PoC Detected
Mar 12, 2026 - 15:19 vuln.today
Public exploit code
Patch released
Mar 12, 2026 - 15:19 nvd
Patch available
CVE Published
Mar 06, 2026 - 21:16 nvd
MEDIUM 6.5

DescriptionGitHub Advisory

OliveTin gives access to predefined shell commands from a web interface. Prior to version 3000.11.1, an authorization flaw in OliveTin allows authenticated users with view: false permission to enumerate action bindings and metadata via dashboard and API endpoints. Although execution (exec) may be correctly denied, the backend does not enforce IsAllowedView() when constructing dashboard and action binding responses. As a result, restricted users can retrieve action titles, IDs, icons, and argument metadata. This issue has been patched in version 3000.11.1.

AnalysisAI

OliveTin prior to version 3000.11.1 fails to enforce view permission checks on dashboard and API endpoints, allowing authenticated users to enumerate action bindings, titles, IDs, icons, and argument metadata despite having restricted access. While command execution remains properly denied, this information disclosure enables attackers to map available actions and their configurations. Public exploit code exists for this medium-severity vulnerability, and a patch is available.

Technical ContextAI

Classified as CWE-200 (Information Exposure). Affects the dashboard and API component of Olivetin. OliveTin gives access to predefined shell commands from a web interface. Prior to version 3000.11.1, an authorization flaw in OliveTin allows authenticated users with view: false permission to enumerate action bindings and metadata via dashboard and API endpoints. Although execution (exec) may be correctly denied, the backend does not enforce IsAllowedView() when constructing dashboard and action binding responses. As a result, restricted users can retrieve action titles, IDs, icons, and argumen

RemediationAI

A vendor patch is available — apply it immediately. Fixed in version 3000.11.1.. Restrict network access to the affected service where possible.

CVE-2026-27626 CRITICAL POC
9.9 Feb 25

OS command injection in OliveTin web shell interface through version 3000.10.0. OliveTin provides web-based access to pr

CVE-2026-30223 HIGH POC
8.8 Mar 06

OliveTin gives access to predefined shell commands from a web interface. [CVSS 8.8 HIGH]

CVE-2026-31817 HIGH POC
8.5 Mar 10

Arbitrary file write in OliveTin prior to 3000.11.2 allows authenticated attackers to write files to arbitrary filesyste

CVE-2026-28342 HIGH POC
7.5 Mar 05

OliveTin versions prior to 3000.10.2 are vulnerable to unauthenticated denial of service through the PasswordHash API en

CVE-2026-28789 HIGH POC
7.5 Mar 05

OliveTin versions prior to 3000.10.3 are vulnerable to unauthenticated denial-of-service attacks when OAuth2 authenticat

CVE-2026-28790 HIGH POC
7.5 Mar 05

OliveTin versions prior to 3000.11.0 suffer from broken access control allowing unauthenticated users to invoke the Kill

CVE-2025-50946 MEDIUM POC
6.5 Aug 13

OS Command Injection in Olivetin 2025.4.22 Custom Themes via the ParseRequestURI function in service/internal/executor/a

CVE-2026-30224 MEDIUM POC
5.4 Mar 06

OliveTin prior to version 3000.11.1 fails to invalidate server-side sessions upon user logout, allowing attackers with a

CVE-2026-30225 MEDIUM POC
5.3 Mar 06

OliveTin versions prior to 3000.11.1 contain an authentication bypass in RestartAction that allows authenticated users t

CVE-2026-48708 HIGH POC
7.5 Jun 15

Concurrent action execution in OliveTin versions 3000.0.0 and prior triggers a race condition in a shared text/template.

CVE-2026-32102 MEDIUM
6.5 Mar 11

### Summary OliveTin’s live EventStream broadcasts execution events and action output to authenticated dashboard subs

CVE-2026-48709 LOW POC
3.7 Jun 15

OliveTin's ValidateArgumentType RPC endpoint exposes action binding IDs and argument configurations to unauthenticated n

Vendor StatusVendor

SUSE

Severity: Medium

Share

CVE-2026-30233 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy