GSA_kwCzR0hTQS0yamc1LXhndnYtNHdxN84AAyzJ

High CVSS: 7.6 EPSS: 0.00511% (0.65564 Percentile) EPSS:

Permalink JSON

Mailman Core vulnerable to timing attacks

Affected Packages	Affected Versions	Fixed Versions
pypi:mailman PURL: `pkg:pypi/mailman`	< 3.3.5	3.3.5
2 Dependent packages 16 Dependent repositories 1,172 Downloads last month Affected Version Ranges All affected versions 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.1.0, 3.1.1, 3.2.0, 3.2.1, 3.2.2, 3.3.0, 3.3.1, 3.3.2, 3.3.3, 3.3.4 All unaffected versions 3.3.5, 3.3.6, 3.3.7, 3.3.8, 3.3.9, 3.3.10

An issue was discovered in Mailman Core before 3.3.5. An attacker with access to the REST API could use timing attacks to determine the value of the configured REST API password and then make arbitrary REST API calls. The REST API is bound to localhost by default, limiting the ability for attackers to exploit this, but can optionally be made to listen on other interfaces.

References:

Identifiers

GHSA-2jg5-xgvv-4wq7

CVE-2021-34337

Risk

Severity

High

CVSS

CVSS Score: 7.6

CVSS vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

EPSS

EPSS Percentage: 0.00511

EPSS Percentile: 0.65564

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Repository

https://gitlab.com/mailman/mailman

Date and time

Published

over 2 years ago

Updated

11 months ago

API

JSON

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Advisories