Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.6
CVE-2023-26566
- EPSS 0.59%
- Published 14.05.2024 12:39:11
- Last modified 21.11.2024 07:51:45
Sangoma FreePBX 1805 through 2203 on Linux contains hardcoded credentials for the Asterisk REST Interface (ARI), which allows remote attackers to reconfigure Asterisk and make external and internal calls via HTTP and WebSocket requests sent to the AP...
8.1
CVE-2023-26567
- EPSS 0.08%
- Published 26.04.2023 20:15:09
- Last modified 03.02.2025 18:15:28
Sangoma FreePBX 1805 through 2302 (when obtained as a ,.ISO file) places AMPDBUSER, AMPDBPASS, AMPMGRUSER, and AMPMGRPASS in the list of global variables. This exposes cleartext authentication credentials for the Asterisk Database (MariaDB/MySQL) and...
1