CVE-2020-36630 : A vulnerability was found in FreePBX cdr 14.0. It has been classified as critica

A vulnerability was found in FreePBX cdr 14.0. It has been classified as critical. This affects the function ajaxHandler of the file ucp/Cdr.class.php. The manipulation of the argument limit/offset leads to sql injection. Upgrading to version 14.0.5.21 is able to address this issue. The name of the patch is f1a9eea2dfff30fb99d825bac194a676a82b9ec8. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-216771.

Published 2022-12-25 20:15:25

Updated 2024-05-17 01:48:52

Source VulDB

View at NVD, CVE.org

Vulnerability category: Sql Injection

Products affected by CVE-2020-36630

Sangoma » Freepbx
Versions from including (>=) 14.0 and before (<) 14.0.5.21
cpe:2.3:a:sangoma:freepbx:*:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2020-36630

Top countries where our scanners detected CVE-2020-36630

Top open port discovered on systems with this issue 5060

IPs affected by CVE-2020-36630 25

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2020-36630!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2020-36630

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 11 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-36630

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L	2.1	3.4	VulDB
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: Low
5.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L	2.1	3.4	VulDB	2024-02-29
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: Low
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2020-36630

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Assigned by: cna@vuldb.com (Primary)

References for CVE-2020-36630

https://vuldb.com/?ctiid.216771

CVE-2020-36630 | FreePBX cdr Cdr.class.php ajaxHandler sql injection
Permissions Required;Third Party Advisory
https://vuldb.com/?id.216771

CVE-2020-36630 | FreePBX cdr Cdr.class.php ajaxHandler sql injection
Permissions Required;Third Party Advisory
https://github.com/FreePBX/cdr/releases/tag/release%2F14.0.5.21

Release release/14.0.5.21 · FreePBX/cdr · GitHub
Release Notes;Third Party Advisory
https://github.com/FreePBX/cdr/commit/f1a9eea2dfff30fb99d825bac194a676a82b9ec8

Merge pull request #20 in FREEPBX/cdr from ~VMISHRA/cdr:bugfix/FREEI-… · FreePBX/cdr@f1a9eea · GitHub
Patch;Third Party Advisory