We use the built-in Dropbox connector to perform nightly backups. This has worked reliably in FreePBX v15 and v16. After upgrading to or deploying FreePBX v17, we noticed the following issue: On the ...
FreePBX 15, 16, and 17 contain a remote code execution caused by insufficiently sanitized user-supplied data in endpoints, letting unauthenticated attackers manipulate the database and execute code ...
Tracked as CVE-2025-57819 (CVSS score of 10/10), the bug is described as an insufficient sanitization of user-supplied data. Sangoma has released emergency patches for a zero-day vulnerability ...
Infosec In brief A flaw in Meta's WhatsApp app “may have been exploited in a sophisticated attack against specific targeted users.” Meta made that alarming admission last week in a security advisory ...
The Sangoma FreePBX Security Team has issued an advisory warning about an actively exploited FreePBX zero-day vulnerability that impacts systems with an administrator control panel (ACP) exposed to ...
Due to ongoing attacks, administrators of telephony and VoIP systems with FreePBX-GUI should secure their systems with an interim solution. A post by a team member in the FreePBX forum indicates that ...
The Sangoma FreePBX Security Team is warning about an actively exploited FreePBX zero-day vulnerability that impacts systems with the Administrator Control Panel (ACP) is exposed to the internet.
LONDON--(BUSINESS WIRE)--UK company Threads Software Ltd today announces the release of its call transcription module for the FreePBX, a cloud-based telephone system. Built around the open-source ...
Servers running the open source Asterisk communication software for Digium VoiP services are under attack by hackers who are managing to commandeer the machines to install web shell interfaces that ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback