FreePBX.Callmenum.Remote.Code.Execution.And.XSS
Description
This indicates an attack attempt against remote Code Execution and Cross Site Scripting vulnerability in FreePBX.
The vulnerability is caused by an error when the vulnerable software handles a malicious HTTP request. It allows a remote attacker to execute arbitrary code via a crafted request.
Affected Products
FreePBX 2.10.0 / 2.9.0
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are not aware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |