Authelia allows open redirects on the logout endpoint
CVE-2021-29456

5.7MEDIUM

Key Information:

Vendor: Authelia
Status: Authelia
Vendor: CVE Published:; 21 April 2021

What is CVE-2021-29456?

Authelia is an open-source authentication and authorization server providing 2-factor authentication and single sign-on (SSO) for your applications via a web portal. In versions 4.27.4 and earlier, utilizing a HTTP query parameter an attacker is able to redirect users from the web application to any domain, including potentially malicious sites. This security issue does not directly impact the security of the web application itself. As a workaround, one can use a reverse proxy to strip the query parameter from the affected endpoint. There is a patch for version 4.28.0.

Affected Version(s)

authelia <= 4.27.4

References

https://github.com/authelia/authelia/security/advisories/...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2021
Vulnerability Reserved
Mar 30, 2021

CVE-2021-29456 Data

JSON