Vulnerability Description
The Sangoma Session Border Controller (SBC) 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to the system (either via the web interface or via SSH) to achieve complete compromise of the device. This affects /var/webconfig/gui/Webconfig.inc.php and /usr/local/sng/bin/sng-user-mgmt.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sangoma | Session Border Controller Firmware | 2.3.23-119-ga |
| Sangoma | Session Border Controller | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/154914/Sangoma-SBC-2.3.23-119-GA-UnauthentiExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2019/Oct/40ExploitMailing ListThird Party Advisory
- https://blog.appsecco.comNot Applicable
- http://packetstormsecurity.com/files/154914/Sangoma-SBC-2.3.23-119-GA-UnauthentiExploitThird Party AdvisoryVDB Entry
- http://seclists.org/fulldisclosure/2019/Oct/40ExploitMailing ListThird Party Advisory
- https://blog.appsecco.comNot Applicable
FAQ
What is CVE-2019-12147?
CVE-2019-12147 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The Sangoma Session Border Controller (SBC) 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthe...
How severe is CVE-2019-12147?
CVE-2019-12147 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2019-12147?
Check the references section above for vendor advisories and patch information. Affected products include: Sangoma Session Border Controller Firmware, Sangoma Session Border Controller.