CVE-2021-31408
Server session is not invalidated when logout() helper method of Authentication module is used in Vaadin 18-19
Severity Score
7.1
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Authentication.logout() helper in com.vaadin:flow-client versions 5.0.0 prior to 6.0.0 (Vaadin 18), and 6.0.0 through 6.0.4 (Vaadin 19.0.0 through 19.0.3) uses incorrect HTTP method, which, in combination with Spring Security CSRF protection, allows local attackers to access Fusion endpoints after the user attempted to log out.
El asistente Authentication.logout() en com.vaadin:flow-client versiones 5.0.0 anteriores a 6.0.0 (Vaadin 18) y versiones 6.0.0 hasta 6.0.4 (versiones Vaadin 19.0.0 hasta 19.0.3) usan un método HTTP incorrecto , que, en combinación con la protección CSRF de Spring Security, permite a atacantes locales acceder a endpoints de Fusion después de que el usuario intenta cerrar la sesión
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2021-04-15 CVE Reserved
- 2021-04-23 CVE Published
- 2024-01-07 EPSS Updated
- 2024-09-17 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-613: Insufficient Session Expiration
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://github.com/vaadin/flow/pull/10577 | 2021-05-04 |
| URL | Date | SRC |
|---|---|---|
| https://vaadin.com/security/cve-2021-31408 | 2021-05-04 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Vaadin Search vendor "Vaadin" | Flow Search vendor "Vaadin" for product "Flow" | >= 5.0.0 < 6.0.0 Search vendor "Vaadin" for product "Flow" and version " >= 5.0.0 < 6.0.0" | - |
Affected
| ||||||
| Vaadin Search vendor "Vaadin" | Flow Search vendor "Vaadin" for product "Flow" | >= 6.0.0 < 6.0.5 Search vendor "Vaadin" for product "Flow" and version " >= 6.0.0 < 6.0.5" | - |
Affected
| ||||||
| Vaadin Search vendor "Vaadin" | Vaadin Search vendor "Vaadin" for product "Vaadin" | >= 19.0.0 < 19.0.4 Search vendor "Vaadin" for product "Vaadin" and version " >= 19.0.0 < 19.0.4" | - |
Affected
| ||||||
| Vaadin Search vendor "Vaadin" | Vaadin Search vendor "Vaadin" for product "Vaadin" | 18.0.0 Search vendor "Vaadin" for product "Vaadin" and version "18.0.0" | - |
Affected
| ||||||