CVE-2020-37094 | EspoCRM 5.8.5 contains an authentication vulnerability that … | CVSS 9.8 CRITICAL

Description

EspoCRM 5.8.5 contains an authentication vulnerability that allows attackers to access other user accounts by manipulating authorization headers. Attackers can decode and modify Basic Authorization and Espo-Authorization tokens to gain unauthorized access to administrative user information and privileges.

Metadata

CVE ID: CVE-2020-37094
State: PUBLISHED
Assigner: VulnCheck
Reserved: 2026-02-01 13:16 UTC
Published: 2026-02-03 22:01 UTC
Last updated: 2026-04-07 14:05 UTC
Primary CWE: CWE-639
Authorization Bypass Through User-Controlled Key
Vendor / Product: EspoCRM / EspoCRM
Sources: cve.org · NVD

Severity & Metrics

9.8 CRITICAL CVSS 3.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC — CISA Coordinator

Exploitation: PoC
Automatable: yes
Tech. Impact: total

Affected products (1)

Vendor	Product	Platform	Versions
EspoCRM	EspoCRM	—	5.8.5

Weakness (CWE)

CWE	Source	Description
CWE-639	cna	Authorization Bypass Through User-Controlled Key

CVSS scores (2)

Score	Severity	Version	Source	Vector
9.8	CRITICAL	3.1	cna	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.7	HIGH	4.0	cna	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References (3)

ExploitDB-48376 https://www.exploit-db.com/exploits/48376
EspoCRM Official Vendor Homepage https://www.espocrm.com
VulnCheck Advisory: EspoCRM 5.8.5 - Privilege Escalation https://www.vulncheck.com/advisories/espocrm-privilege-escalation