logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-37156

Description

Redmine 4.2.0 and 4.2.1 allow existing user sessions to continue upon enabling two-factor authentication for the user's account, but the intended behavior is for those sessions to be terminated.


Affected Package


OS OS Version Package Name Package Version
ubuntu 20.04 redmine any
ubuntu upstream redmine any
ubuntu upstream redmine any
ubuntu 16.04 redmine any

Related