CVE-2020-37104 — HIGH (7.5)

Vulnerability Description

ASTPP 4.0.1 contains an information disclosure vulnerability that allows unauthenticated attackers to download database backup files by predicting backup filename patterns. Attackers can generate a list of 6-digit PIN combinations and fuzz the backup download URL to exfiltrate sensitive database information from the /database_backup/ directory.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Inextrix	Astpp	4.0.1

Related Weaknesses (CWE)

CWE-538

References

https://github.com/iNextrix/ASTPPProduct
https://www.astppbilling.org/Product
https://www.exploit-db.com/exploits/47900ExploitThird Party AdvisoryVDB Entry
https://www.vulncheck.com/advisories/astpp-voip-billing-database-backup-downloadThird Party Advisory

FAQ

What is CVE-2020-37104?

CVE-2020-37104 is a vulnerability with a CVSS score of 7.5 (HIGH). ASTPP 4.0.1 contains an information disclosure vulnerability that allows unauthenticated attackers to download database backup files by predicting backup filename patterns. Attackers can generate a li...

How severe is CVE-2020-37104?

CVE-2020-37104 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-37104?

Check the references section above for vendor advisories and patch information. Affected products include: Inextrix Astpp.