CVE-2020-35580 Scanner
CVE-2020-35580 scanner - Local File Inclusion (LFI) vulnerability in SearchBlox
Short Info
Level
High
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
1 month 1 day
Scan only one
URL
Toolbox
-
SearchBlox is a popular enterprise search and data analytics software that helps organizations to index, retrieve, and analyze large volumes of structured and unstructured data from various sources, including websites, social media, databases, and file systems. It offers a range of features such as faceted search, natural language processing, sentiment analysis, reporting, and visualization, which make it a versatile tool for business intelligence, e-commerce, customer support, and research purposes. SearchBlox is widely used by Fortune 500 companies, government agencies, universities, hospitals, and NGOs across the world.
However, SearchBlox has recently been found to have a critical security flaw, identified by the CVE-2020-35580 vulnerability code. This vulnerability is related to the FileServlet component of SearchBlox, which allows remote and unauthenticated users to read arbitrary files from the system via a specially crafted URL. Specifically, an attacker can access sensitive files such as configuration files or password hashes, leading to the theft of sensitive information. Since the vulnerability affects all versions of SearchBlox prior to 9.2.2, millions of users worldwide are at risk of being compromised.
The exploitation of the CVE-2020-35580 vulnerability can result in severe consequences, including data theft, privacy breaches, identity theft, financial losses, system compromise, and reputational damage. For example, an attacker can access the Super Admin's API key, which allows them to gain complete control over the SearchBlox instance, including data manipulation and extraction. Moreover, the base64 encoded SHA1 password hashes of other SearchBlox users can be easily decrypted, leading to unauthorized access to their accounts and information.
In conclusion, the CVE-2020-35580 vulnerability in SearchBlox highlights the importance of keeping software systems up to date and applying security patches promptly. Users of SearchBlox should be aware of the potential risks of using outdated versions of the software and take appropriate measures to protect themselves from attacks. s4e.io offers a comprehensive vulnerability management platform that can help users to quickly and easily identify and remediate vulnerabilities in their digital assets, including SearchBlox. By leveraging the pro features of s4e.io, users can stay ahead of the threat landscape and secure their organization's critical data and reputation.
REFERENCES
