CVE-2021-31408

Published: Apr 23, 2021Modified: Nov 21, 2024

7.1

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Exploitability: 1.8 / Impact: 5.2

Source: NVD

Description

Authentication.logout() helper in com.vaadin:flow-client versions 5.0.0 prior to 6.0.0 (Vaadin 18), and 6.0.0 through 6.0.4 (Vaadin 19.0.0 through 19.0.3) uses incorrect HTTP method, which, in combination with Spring Security CSRF protection, allows local attackers to access Fusion endpoints after the user attempted to log out.

Affected (4)

Products: Vaadin: Flow, Vaadin

2 products

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Vaadin Flow	From 5.0.0 to 6.0.0
Vaadin Flow	From 6.0.0 to 6.0.5
Vaadin Vaadin	From 19.0.0 to 19.0.4
Vaadin Vaadin	Version 18.0.0

Related CWEs

Insufficient Session Expiration

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."

References (4)

https://github.com/vaadin/flow/pull/10577

Source: security@vaadin.com

PatchThird Party Advisory

https://vaadin.com/security/cve-2021-31408

Source: security@vaadin.com

Vendor Advisory

https://github.com/vaadin/flow/pull/10577

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://vaadin.com/security/cve-2021-31408

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.