Attacker Value
High
(3 users assessed)
Exploitability
Low
(3 users assessed)
User Interaction
None
Privileges Required
Low
Attack Vector
Network
0

CVE-2020-9337

Disclosure Date: February 26, 2020
CVE-2020-9337 CVSS v3 Base Score: 6.5
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

In GolfBuddy Course Manager 1.1, passwords are sent (with base64 encoding) via a GET request.

Add Assessment

3
Ratings
  • Attacker Value
    Medium
  • Exploitability
    Medium
Easy to weaponizeUnauthenticatedRequires physical accessRequires user interaction
Technical Analysis

Recap

Nothing deep, passwords are sent using Base64.

Requires

Ability to monitor networking traffic during user authentification.

Loot

Possibility to retrieve and decode users’ passwords and gain access to their accounts.

Log in to Add Reply
2
Ratings
  • Attacker Value
    Medium
  • Exploitability
    Low
Easy to weaponizeUnauthenticatedVulnerable in default configurationRequires user interaction
Technical Analysis

This exploit is fairly straight forward, for an actor to exploit this they would only have to intercept the networking traffic sent when a user submits their credentials for authentication. Because of the weak encoding used (Base64) it would be easy to decode and gain access to a users credentials allowing potential account takeovers.

The only difficulty is the lack of connectivity that the affected devices have.

Log in to Add Reply
2
Ratings
  • Attacker Value
    High
  • Exploitability
    Very Low
Gives privileged accessUnauthenticated
Technical Analysis

There’s not a lot of information about this CVE, however the notice does give us some insight. This appears to me to be a simple Man-In-The-Middle attack: one that you’d be incredibly lucky to have a use for in the wild. As such, useability for this CVE is low. If kmore information comes forward regarding this CVE, I shall update my assessment accordingly.

Log in to Add Reply
CVSS V3 Severity and Metrics
Base Score:
6.5 Medium
Impact Score:
3.6
Exploitability Score:
2.8
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
Low
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
High
Integrity (I):
None
Availability (A):
None

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • golfbuddyglobal

Products

  • course manager 1.1

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis