CVE-2024-21641

2024-01-0521:15:43

CWE-601

[email protected]

web.nvd.nist.gov

flarum

open source

discussion platform

software

cve-2024-21641

security vulnerability

open redirect

fix

flarum/core v1.8.5

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.8%

JSON

Flarum is open source discussion platform software. Prior to version 1.8.5, the Flarum /logout route includes a redirect parameter that allows any third party to redirect users from a (trusted) domain of the Flarum installation to redirect to any link. For logged-in users, the logout must be confirmed. Guests are immediately redirected. This could be used by spammers to redirect to a web address using a trusted domain of a running Flarum installation. The vulnerability has been fixed and published as flarum/core v1.8.5. As a workaround, some extensions modifying the logout route can remedy this issue if their implementation is safe.

Affected configurations

Vulners

NVD

Node

flarumflarumRange<1.8.5

VendorProductVersionCPE
flarumflarum*cpe:2.3:a:flarum:flarum:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
flarum	flarum	*	cpe:2.3:a:flarum:flarum::::::::

CNA Affected

[
  {
    "vendor": "flarum",
    "product": "framework",
    "versions": [
      {
        "version": "< 1.8.5",
        "status": "affected"
      }
    ]
  }
]