Sangoma

Restapps

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2021-45461

Exploit
  • EPSS 4.98%
  • Published 22.12.2021 19:15:11
  • Last modified 21.11.2024 06:32:15

FreePBX, when restapps (aka Rest Phone Apps) 15.0.19.87, 15.0.19.88, 16.0.18.40, or 16.0.18.41 is installed, allows remote attackers to execute arbitrary code, as exploited in the wild in December 2021. The fixed versions are 15.0.20 and 16.0.19.

9.8

CVE-2020-10666

  • EPSS 1.4%
  • Published 31.05.2021 12:15:08
  • Last modified 21.11.2024 04:55:48

The restapps (aka Rest Phone apps) module for Sangoma FreePBX and PBXact 13, 14, and 15 through 15.0.19.2 allows remote code execution via a URL variable to an AMI command.