CVE-2018-4056

moderate-risk

Published 2019-02-05

An exploitable SQL injection vulnerability exists in the administrator web portal function of coTURN prior to version 4.5.0.9. A login message with a specially crafted username can cause an SQL injection, resulting in authentication bypass, which could give access to the TURN server administrator web portal. An attacker can log in via the external interface of the TURN server to trigger this vulnerability.

Do I need to act?

0.49% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (3)

Coturn

Debian Linux

Affected Vendors

Debian Coturn Project

References (6)

Mailing List https://lists.debian.org/debian-lts-announce/2019/02/msg00017.html

Exploit https://talosintelligence.com/vulnerability_reports/TALOS-2018-0730

Third Party Advisory https://www.debian.org/security/2019/dsa-4373

Mailing List https://lists.debian.org/debian-lts-announce/2019/02/msg00017.html

Exploit https://talosintelligence.com/vulnerability_reports/TALOS-2018-0730

Third Party Advisory https://www.debian.org/security/2019/dsa-4373

/ 100

moderate-risk

Severity 32/34 · Critical

Exploitability 2/34 · Minimal

Exposure 9/34 · Low