Vaultwarden has Privilege Escalation via Bulk Permission Update to Unauthorized Collections by Manager
Summary A Manager account accessall=false was able to escalate privileges by directly invoking the bulk-access API against collections that were not originally assigned to them. The API allowed changing assigned=false to assigned=true, resulting in unauthorized access. Additionally, prior to the...