CVE-2021-42096

CWE-307 CWE-200 — Information Exposure8 documents6 sources

Severity

4.3MEDIUM

EPSS

0.3%

top 45.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU Mailman Debian Debian Linux

Timeline

PublishedOct 21

Latest updateMay 24

Description

GNU Mailman before 2.1.35 may allow remote Privilege Escalation. A certain csrf_token value is derived from the admin password, and may be useful in conducting a brute-force attack against that password.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

▶NVDgnu/mailman< 2.1.35

▶Ubuntumailman< 1:2.1.26-1ubuntu0.4+2

Also affects: Debian Linux 10.0

Patches

Patch: www.openwall.com ↗Patch: bugs.launchpad.net ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-c875-cgwj-4fjw: GNU Mailman before 2↗2022-05-24

▶

OSV

mailman vulnerabilities↗2021-10-22

▶

OSV

CVE-2021-42096: GNU Mailman before 2↗2021-10-21

▶

CVEList

CVE-2021-42096: GNU Mailman before 2↗2021-10-21

▶

📋Vendor Advisories

Ubuntu

Mailman vulnerabilities↗2021-11-01

▶

Ubuntu

Mailman vulnerabilities↗2021-10-22

▶

Red Hat

mailman: CSRF token derived from admin password allows offline brute-force attack↗2021-10-21

▶