CVE-2021-42097

CWE-352Cross-Site Request Forgery (CSRF)8 documents6 sources
Severity
8.0HIGH
EPSS
0.6%
top 30.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
GNU MailmanDebian Debian Linux
Timeline
PublishedOct 21
Latest updateMay 24

Description

GNU Mailman before 2.1.35 may allow remote Privilege Escalation. A csrf_token value is not specific to a single user account. An attacker can obtain a value within the context of an unprivileged user account, and then use that value in a CSRF attack against an admin (e.g., for account takeover).

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 2.1 | Impact: 5.9

Affected Packages2 packages

NVDgnu/mailman< 2.1.35
Ubuntumailman< 1:2.1.26-1ubuntu0.4+2

Also affects: Debian Linux 10.0

Patches

Patch: www.openwall.comPatch: bugs.launchpad.netPatch: www.openwall.com

🔴Vulnerability Details

4
GHSA
GHSA-vj65-f4hc-r425: GNU Mailman before 22022-05-24
OSV
mailman vulnerabilities2021-10-22
CVEList
CVE-2021-42097: GNU Mailman before 22021-10-21
OSV
CVE-2021-42097: GNU Mailman before 22021-10-21

📋Vendor Advisories

3
Ubuntu
Mailman vulnerabilities2021-11-01
Ubuntu
Mailman vulnerabilities2021-10-22
Red Hat
mailman: CSRF token bypass allows to perform CSRF attacks and account takeover2021-10-21