CVE-2020-5601 – This vulnerability allows remote attackers to e... (How to Fix)

Q: What is the severity of CVE-2020-5601?

CVE-2020-5601 has a CVSS score of 8.8 (HIGH). This vulnerability allows remote attackers to execute arbitrary commands through the Chrome Extension for e-Tax Reception System Ver1.0.0.0. Attackers can potentially take control of affected systems by exploiting unspecified vectors in the extension. Users of the e-Tax Reception System with the vulnerable Chrome extension installed are affected.

📋 TL;DR

This vulnerability allows remote attackers to execute arbitrary commands through the Chrome Extension for e-Tax Reception System Ver1.0.0.0. Attackers can potentially take control of affected systems by exploiting unspecified vectors in the extension. Users of the e-Tax Reception System with the vulnerable Chrome extension installed are affected.

💻 Affected Systems

Products:

Chrome Extension for e-Tax Reception System

Versions: Ver1.0.0.0

Operating Systems: Windows, macOS, Linux (any OS with Chrome)

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects systems with the specific Chrome extension installed. The vulnerability is in the extension itself, not the underlying e-Tax system.

📦 What is this software?

E Tax Reception System by Nta

View all CVEs affecting E Tax Reception System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with remote code execution, allowing attackers to install malware, steal sensitive tax data, or pivot to other systems.

🟠

Likely Case

Attackers execute commands to steal authentication credentials, tax documents, or install keyloggers to capture sensitive financial information.

🟢

If Mitigated

Limited impact if extension is disabled or removed, though system may remain vulnerable until patched.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

The vulnerability allows remote command execution via unspecified vectors, suggesting relatively straightforward exploitation once vectors are identified.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Ver1.0.0.1 or later

Vendor Advisory: https://www.e-tax.nta.go.jp/topics/topics_200618.htm

Restart Required: No

Instructions:

1. Open Chrome browser. 2. Go to chrome://extensions/. 3. Find 'e-Tax Reception System' extension. 4. Remove the extension. 5. Visit Chrome Web Store or vendor site to install updated version 1.0.0.1 or later.

🔧 Temporary Workarounds

Disable Chrome Extension

all

Temporarily disable the vulnerable extension to prevent exploitation

chrome://extensions/ -> Toggle off 'e-Tax Reception System' extension

Remove Extension

all

Completely remove the vulnerable extension from Chrome

chrome://extensions/ -> Click 'Remove' on 'e-Tax Reception System' extension

🧯 If You Can't Patch

Disable or remove the Chrome extension immediately
Use alternative methods to access e-Tax system until extension is updated

🔍 How to Verify

Check if Vulnerable:

Check Chrome extensions at chrome://extensions/ and verify if 'e-Tax Reception System' extension version is 1.0.0.0

Check Version:

chrome://extensions/ -> Find 'e-Tax Reception System' -> Check version number

Verify Fix Applied:

After update, verify extension version shows 1.0.0.1 or later in chrome://extensions/

📡 Detection & Monitoring

Log Indicators:

Unusual Chrome extension activity
Suspicious command execution from browser context
Unexpected network connections from Chrome

Network Indicators:

Unusual outbound connections from Chrome browser
Traffic to unexpected domains

SIEM Query:

source="chrome" AND (extension_name="e-Tax Reception System" OR process="chrome.exe") AND (event="command_execution" OR event="unusual_network")

📊 Metadata

CVE ID: CVE-2020-5601

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE: CWE-77

Published: June 30, 2020

Last Updated: November 21, 2024

🔗 References

https://jvn.jp/en/jp/JVN40039627/index.html Third Party Advisory
https://www.e-tax.nta.go.jp/topics/topics_200618.htm Vendor Advisory
https://jvn.jp/en/jp/JVN40039627/index.html Third Party Advisory
https://www.e-tax.nta.go.jp/topics/topics_200618.htm Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-5601, you might also want to check these: