This can be leveraged to gain access to higher-privilege endpoints, e.g. if you get a user with admin privileges to run the code, you can potentially elevate all users and grant them admin privileges or access protected content.
Will be patched in 14.3.1 and 15.0.0.
Ensure that access to the Dictionary section is only granted to trusted users.