CVE-2021-25931

Severity CVSS v4.0:
Pending analysis
Type:
CWE-352 Cross-Site Request Forgery (CSRF)
Publication date:
20/05/2021
Last modified:
30/04/2025

Description

In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015.1.0-1 through meridian-foundation-2019.1.18-1; meridian-foundation-2020.1.0-1 through meridian-foundation-2020.1.6-1 are vulnerable to CSRF, due to no CSRF protection at `/opennms/admin/userGroupView/users/updateUser`. This flaw allows assigning `ROLE_ADMIN` security role to a normal user. Using this flaw, an attacker can trick the admin user to assign administrator privileges to a normal user by enticing him to click upon an attacker-controlled website.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:opennms:horizon:*:*:*:*:*:*:*:* 1.0 (including) 27.1.1 (excluding)
cpe:2.3:a:opennms:meridian:*:*:*:*:*:*:*:* 2015.1.0 (including) 2019.1.19 (excluding)
cpe:2.3:a:opennms:meridian:*:*:*:*:*:*:*:* 2020.1.0 (including) 2020.1.7 (excluding)