CVE-2025-57819

Warnung

Exploit

EPSS 59.71%
Veröffentlicht 28.08.2025 16:45:18
Zuletzt bearbeitet 12.09.2025 13:59:26
Quelle security-advisories@github.com
Teams Watchlist Login
Unerledigt Login

FreePBX is an open-source web-based graphical user interface. FreePBX 15, 16, and 17 endpoints are vulnerable due to insufficiently sanitized user-supplied data allowing unauthenticated access to FreePBX Administrator leading to arbitrary database manipulation and remote code execution. This issue has been patched in endpoint versions 15.0.66, 16.0.89, and 17.0.3.

Betroffene Produkte Warnungen 1 Metriken 3 CWE 2 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sangoma ≫ Freepbx Version >= 15.0 < 15.0.66

Sangoma ≫ Freepbx Version >= 16.0 < 16.0.89

Sangoma ≫ Freepbx Version >= 17.0 < 17.0.3

29.08.2025: CISA Known Exploited Vulnerabilities (KEV) Catalog

Sangoma FreePBX Authentication Bypass Vulnerability

Schwachstelle

Sangoma FreePBX contains an authentication bypass vulnerability due to insufficiently sanitized user-supplied data allows unauthenticated access to FreePBX Administrator leading to arbitrary database manipulation and remote code execution.

Beschreibung

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	59.71%	0.982

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
security-advisories@github.com	10	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-288 Authentication Bypass Using an Alternate Path or Channel

The product requires authentication, but the product has an alternate path or channel that does not require authentication.

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

https://github.com/FreePBX/security-reporting/security/advisories/GHSA-m42g-xg4c-5f3h

Vendor Advisory

Mitigation

https://community.freepbx.org/t/security-advisory-please-lock-down-your-administrator-access/107203

Vendor Advisory

Issue Tracking

https://github.com/watchtowrlabs/watchTowr-vs-FreePBX-CVE-2025-57819

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2025-57819

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-57819

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-57819

EUVD