Richard Cloke

**Name of the Vulnerable Software and Affected Versions** GNU Mailman versions prior to 2.1.35 **Description** The issue allows remote Privilege Escalation. A certain `csrf token` value is derived from the `admin password`, and may be useful in conducting a brute-force attack against that password. **Recommendations** For GNU Mailman versions prior to 2.1.35, update to version 2.1.35 or later to resolve the issue. As a temporary workaround, consider restricting access to the admin interface to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** GNU Mailman versions prior to 2.1.35 **Description** The issue allows remote Privilege Escalation. A `csrf token` value is not specific to a single user account. An attacker can obtain a value within the context of an unprivileged user account, and then use that value in a CSRF attack against an admin, potentially leading to account takeover. **Recommendations** For versions prior to 2.1.35, update to version 2.1.35 or later to resolve the issue. As a temporary workaround, consider restricting access to admin accounts or implementing additional CSRF protection measures until a patch is applied.