Sangoma FreePBX 1805 through 2203 on Linux contains hardcoded credentials for the Asterisk REST Interface (ARI), which allows remote attackers to reconfigure Asterisk and make external and internal calls via HTTP and WebSocket requests sent to the API.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-02T11:53:54.046Z
Reserved:
Link: CVE-2023-26566
Vulnrichment
Updated: 2024-08-02T11:53:54.046Z
NVD
Status : Awaiting Analysis
Published: 2024-05-14T12:39:11.817
Modified: 2024-07-03T01:39:39.010
Link: CVE-2023-26566
Redhat
No data.