CVE-2020-6061

high-risk

Published 2020-02-19

An exploitable heap out-of-bounds read vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to information leaks and other misbehavior. An attacker needs to send an HTTPS request to trigger this vulnerability.

Do I need to act?

~

1.8% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

9

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (10)

Coturn

Fedora

Fedora

Fedora

Debian Linux

Debian Linux

Ubuntu Linux

Ubuntu Linux

Ubuntu Linux

Ubuntu Linux

Affected Vendors

Debian Canonical Fedoraproject Coturn Project

References (12)

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Exploit https://talosintelligence.com/vulnerability_reports/TALOS-2020-0984

Third Party Advisory https://usn.ubuntu.com/4415-1/

Third Party Advisory https://www.debian.org/security/2020/dsa-4711

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Exploit https://talosintelligence.com/vulnerability_reports/TALOS-2020-0984

Third Party Advisory https://usn.ubuntu.com/4415-1/

Third Party Advisory https://www.debian.org/security/2020/dsa-4711

53

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 5/34 · Minimal

Exposure 16/34 · Moderate