Cyber Resilience

CVE-2020-36912

MediumPublic PoC

Published: 06 January 2026

Published
06 January 2026
Modified
15 April 2026
KEV Added
Patch
CVSS Score v4 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0037 29.1th percentile
Risk Priority 35 floored blend · peak EPSS

Summary

CVE-2020-36912 is a medium-severity Open Redirect (CWE-601) vulnerability in Ibmcloud (inferred from references). Its CVSS base score is 5.1 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Spearphishing Link (T1566.002); ranked at the 29.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and AC-4 (Information Flow Enforcement).

Deeper analysis

CVE-2020-36912 is an open redirect vulnerability in Plexus Anblick Digital Signage Management version 3.1.13. The flaw exists in the 'PantallaLogin' script, where improper input validation of the 'pagina' GET parameter enables attackers to manipulate redirects. This issue corresponds to CWE-601 and carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating critical severity.

Remote attackers require no privileges or authentication to exploit this vulnerability. They can craft malicious links embedding the manipulated 'pagina' parameter, tricking users into redirection to arbitrary attacker-controlled websites. Potential outcomes include phishing, credential theft, or delivery of malicious content, leveraging the high impacts on confidentiality, integrity, and availability.

Advisories detailing the vulnerability are available from IBM X-Force Exchange (https://exchange.xforce.ibmcloud.com/vulnerabilities/185521), Packet Storm Security (https://packetstormsecurity.com/files/158473), VulnCheck (https://www.vulncheck.com/advisories/plexus-anblick-digital-signage-management-open-redirect-via-pagina-parameter), and Zero Science Lab (https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5573.php). The vendor's site is at https://www.plexus.es/. No specific patch or mitigation guidance is provided in the referenced descriptions.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Plexus anblick Digital Signage Management 3.1.13 contains an open redirect vulnerability in the 'PantallaLogin' script that allows attackers to manipulate the 'pagina' GET parameter. Attackers can craft malicious links that redirect users to arbitrary websites by exploiting improper input validation…

more

in the parameter.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1566.002 Spearphishing Link Initial Access
Adversaries may send spearphishing emails with a malicious link in an attempt to gain access to victim systems.
T1204.001 Malicious Link Execution
An adversary may rely upon a user clicking a malicious link in order to gain execution.
Why these techniques?

Open redirect enables crafting of trusted-domain malicious links for spearphishing and user execution leading to phishing/credential theft/malicious content delivery.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-44833Shared CWE-601
CVE-2024-51321Shared CWE-601
CVE-2025-0244Shared CWE-601
CVE-2025-24868Shared CWE-601
CVE-2025-24381Shared CWE-601
CVE-2024-57241Shared CWE-601
CVE-2024-13888Shared CWE-601
CVE-2026-7504Shared CWE-601
CVE-2026-29067Shared CWE-601
CVE-2025-23363Shared CWE-601

Affected Assets

Ibmcloud
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates the improper input validation of the 'pagina' GET parameter that allows manipulation for open redirects to arbitrary malicious sites.

prevent

Enforces information flow control policies to restrict redirects only to approved domains, preventing unauthorized external redirects.

prevent

Filters output such as the redirect Location header generated from the 'pagina' parameter to block malicious URLs.

References