Описание
Sangoma FreePBX 115.0.16.26 and below, 14.0.13.11 and below, 13.0.197.13 and below have Incorrect Access Control.
Sangoma FreePBX 115.0.16.26 and below, 14.0.13.11 and below, 13.0.197.13 and below have Incorrect Access Control.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-19006
- https://community.freepbx.org/t/freepbx-security-vulnerability-sec-2019-001/62772
- https://pastebin.com/2CdsQMKW
- https://research.checkpoint.com/2020/inj3ctor3-operation-leveraging-asterisk-servers-for-monetization
- https://wiki.freepbx.org/display/FOP/2019-11-20+Remote+Admin+Authentication+Bypass
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-19006
- https://www.freepbx.org/category/blog
Связанные уязвимости
CVSS3: 9.8
nvd
около 6 лет назад
Sangoma FreePBX 115.0.16.26 and below, 14.0.13.11 and below, 13.0.197.13 and below have Incorrect Access Control.