CVE-2025-57819Sangoma FreePBX Authentication Bypass Vulnerability

PUBLISHEDvulnerability record
2025-08-29 · last modified August 29, 2025

Metadata

CVE ID:
CVE-2025-57819
项目:
Sangoma
产品:
FreePBX
添加日期:
2025-08-29
到期日:
2025-09-19
最后更新:
August 29, 2025

漏洞名称

Sangoma FreePBX Authentication Bypass Vulnerability

描述

Sangoma FreePBX contains an authentication bypass vulnerability due to insufficiently sanitized user-supplied data allows unauthenticated access to FreePBX Administrator leading to arbitrary database manipulation and remote code execution.

已知用于勒索软件活动吗?

勒索软件状态:
Unknown

采集行动

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

其他说明

相关新闻文章

相关 CWE