CVE-2026-30225— OliveTin: RestartAction always runs actions as guest

CVSS 5.3 · Medium EPSS 0.08% · P23 Updated Mar 10, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-30225

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

OliveTin: RestartAction always runs actions as guest

Source: NVD (National Vulnerability Database)

Vulnerability Description

OliveTin gives access to predefined shell commands from a web interface. Prior to version 3000.11.1, an authentication context confusion vulnerability in RestartAction allows a low‑privileged authenticated user to execute actions they are not permitted to run. RestartAction constructs a new internal connect.Request without preserving the original caller’s authentication headers or cookies. When this synthetic request is passed to StartAction, the authentication resolver falls back to the guest user. If the guest account has broader permissions than the authenticated caller, this results in privilege escalation and unauthorized command execution. This vulnerability allows a low‑privileged authenticated user to bypass ACL restrictions and execute arbitrary configured shell actions. This issue has been patched in version 3000.11.1.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

未有动机的代理或中间人(混淆代理)

Source: NVD (National Vulnerability Database)

Vulnerability Title

OliveTin 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OliveTin是OliveTin开源的一个Web应用。 OliveTin 3000.11.1之前版本存在安全漏洞，该漏洞源于RestartAction中存在身份验证上下文混淆，可能导致低权限已验证用户执行其无权运行的操作。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
OliveTin	OliveTin	< 3000.11.1	-

II. Public POCs for CVE-2026-30225

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-30225

请登录查看更多情报信息。

Release 3000.11.1 · OliveTin/OliveTin · GitHubx_refsource_MISC
RestartAction always runs actions as guest · Advisory · OliveTin/OliveTin · GitHubx_refsource_CONFIRM
security: GHSA-p443-p7w5-2f7f (MODERATE) RestartAction always runs ac… · OliveTin/OliveTin@cb46a59 · GitHubx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2026-30225

Same Patch Batch · OliveTin · 2026-03-06 · 4 CVEs total

CVE-2026-30223	8.8 HIGH	OliveTin: JWT Audience Validation Bypass in Local Key and HMAC Modes
CVE-2026-30233	6.5 MEDIUM	OliveTin: View permission not being checked when returning dashboards
CVE-2026-30224	5.4 MEDIUM	OliveTin: Session Fixation - Logout Fails to Invalidate Server-Side Session

IV. Related Vulnerabilities

Same product: OliveTin

Same vendor: OliveTin

Same weakness: CWE-441

V. Comments for CVE-2026-30225

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-30225— OliveTin: RestartAction always runs actions as guest

I. Basic Information for CVE-2026-30225

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-30225

III. Intelligence Information for CVE-2026-30225

Same Patch Batch · OliveTin · 2026-03-06 · 4 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-30225

Leave a comment