CVE-2021-44227
EUVD-2021-261302.12.2021, 03:15
In GNU Mailman before 2.1.38, a list member or moderator can get a CSRF token and craft an admin request (using that token) to set a new admin password or make other changes.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gnu | mailman | 𝑥 < 2.1.38 |
| debian | debian_linux | 9.0 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Common Weakness Enumeration