Endpoint Vulnerability

Security Vulnerabilities fixed in mailman RHSA-2021:4826

Description

Red Hat released an important security advisory for mailman 2.1 on RHEL 8, fixing a CSRF token bypass that enables account takeover and a token derived from the admin password that allows offline brute-force attacks, affecting x86_64, s390x, ppc64le, and aarch64.