Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.5
CVSSv2

CVE-2021-42097

Published: 21/10/2021 Updated: 07/11/2023
CVSS v2 Base Score: 8.5 | Impact Score: 10 | Exploitability Score: 6.8
CVSS v3 Base Score: 8 | Impact Score: 5.9 | Exploitability Score: 2.1
VMScore: 756
Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C
Subscribe to Gnu

Vulnerability Summary

GNU Mailman prior to 2.1.35 may allow remote Privilege Escalation. A csrf_token value is not specific to a single user account. An attacker can obtain a value within the context of an unprivileged user account, and then use that value in a CSRF attack against an admin (e.g., for account takeover).

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gnu mailman

debian debian linux 10.0

Vendor Advisories

Debian Security Advisories: DSA-4991-1 mailman -- security update
Several vulnerabilities were discovered in mailman, a web-based mailing list manager, which could result in arbitrary content injection via the options and private archive login pages, and CSRF attacks or privilege escalation via the user options page For the oldstable distribution (buster), these problems have been fixed in version 1:2129-1+deb ...
Amazon Linux 2: ALAS2-2022-1740
Cross-site request forgery (CSRF) vulnerability in the user options page in GNU Mailman 21x before 2123 allows remote attackers to hijack the authentication of arbitrary users for requests that modify an option, as demonstrated by gaining access to the credentials of a victim's account (CVE-2016-6893) A Cross-Site Request Forgery (CSRF) attack ...
Red Hat: CVE-2021-42097
A Cross-Site Request Forgery (CSRF) attack can be performed in mailman due to a CSRF token bypass CSRF tokens are not checked against the right user and a token created by one user can be used by another one to perform a request, effectively bypassing the protection provided by CSRF tokens A remote attacker with an account on the mailman system c ...
Arch Linux Issues:
GNU Mailman before 2135 may allow remote privilege escalation A csrf_token value is not specific to a single user account An attacker can obtain a value within the context of an unprivileged user account, and then use that value in a CSRF attack against an admin (eg, for account takeover) ...

Mailing Lists

Full Disclosure: Mailman 2.1.35 security release
<!--X-Body-Begin--> <!--X-User-Header--> oss-sec mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> Mailman 2135 security release <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: Alan Coopersmith &lt;alancoopers ...

References

CWE-352https://bugs.launchpad.net/mailman/+bug/1947640http://www.openwall.com/lists/oss-security/2021/10/21/4https://www.debian.org/security/2021/dsa-4991https://mail.python.org/archives/list/mailman-announce%40python.org/thread/IKCO6JU755AP5G5TKMBJL6IEZQTTNPDQ/https://nvd.nist.govhttps://www.debian.org/security/2021/dsa-4991
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400CVE-2023-7252CVE-2024-21111denial of serviceCVE-2024-29661CVE-2024-22856remote attackersencryptionCVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook