CVE-2018-4058

EUVD-2018-15844

21.03.2019, 16:00

An exploitable unsafe default configuration vulnerability exists in the TURN server functionality of coTURN prior to 4.5.0.9. By default, the TURN server allows relaying external traffic to the loopback interface of its own host. This can provide access to other private services running on that host, which can lead to further attacks. An attacker can set up a relay with a loopback address as the peer on an affected TURN server to trigger this vulnerability.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.7 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N
talos	CNA	7.7 HIGH	NETWORK	LOW	LOW	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 38%

Affected Products (NVD)

Vendor	Product	Version
coturn_project	coturn	𝑥 < 4.5.0.9

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

coturn

bookworm	4.6.1-1 fixed
bullseye	4.5.2-3 fixed
sid	4.6.1-2 fixed
trixie	4.6.1-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

coturn

bionic	Fixed 4.5.0.7-1ubuntu2.18.04.1 released
cosmic	Fixed 4.5.0.7-1ubuntu2.18.10.1 released
disco	not-affected
eoan	not-affected
focal	not-affected
trusty	dne
xenial	Fixed 4.5.0.3-1ubuntu0.2 released

References

https://talosintelligence.com/vulnerability_reports/TALOS-2018-0732