Lucene search

[email protected]CVE-2023-26567

HistoryApr 26, 2023 - 8:15 p.m.

CVE-2023-26567

2023-04-2620:15:09

CWE-522

[email protected]

web.nvd.nist.gov

cve-2023-26567

sangoma

freepbx

authentication credentials

cleartext

asterisk database

manager interface

security vulnerability

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

8.1 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.3%

JSON

Sangoma FreePBX 1805 through 2302 (when obtained as a ,.ISO file) places AMPDBUSER, AMPDBPASS, AMPMGRUSER, and AMPMGRPASS in the list of global variables. This exposes cleartext authentication credentials for the Asterisk Database (MariaDB/MySQL) and Asterisk Manager Interface. For example, an attacker can make a /ari/asterisk/variable?variable=AMPDBPASS API call.

Affected configurations

NVD

Node

sangomafreepbx_linux_7Match1805

sangomafreepbx_linux_7Match1904

sangomafreepbx_linux_7Match1910

sangomafreepbx_linux_7Match2002

sangomafreepbx_linux_7Match2008

sangomafreepbx_linux_7Match2011

sangomafreepbx_linux_7Match2104

sangomafreepbx_linux_7Match2105

sangomafreepbx_linux_7Match2109

sangomafreepbx_linux_7Match2112

sangomafreepbx_linux_7Match2201

sangomafreepbx_linux_7Match2202

sangomafreepbx_linux_7Match2203

sangomafreepbx_linux_7Match2302

CPENameOperatorVersion
sangoma:freepbx_linux_7sangoma freepbx linux 7eq1805
sangoma:freepbx_linux_7sangoma freepbx linux 7eq1904
sangoma:freepbx_linux_7sangoma freepbx linux 7eq1910
sangoma:freepbx_linux_7sangoma freepbx linux 7eq2002
sangoma:freepbx_linux_7sangoma freepbx linux 7eq2008
sangoma:freepbx_linux_7sangoma freepbx linux 7eq2011
sangoma:freepbx_linux_7sangoma freepbx linux 7eq2104
sangoma:freepbx_linux_7sangoma freepbx linux 7eq2105
sangoma:freepbx_linux_7sangoma freepbx linux 7eq2109
sangoma:freepbx_linux_7sangoma freepbx linux 7eq2112

CPE	Name	Operator	Version
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	1805
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	1904
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	1910
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	2002
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	2008
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	2011
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	2104
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	2105
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	2109
sangoma:freepbx_linux_7	sangoma freepbx linux 7	eq	2112

Rows per page:

1-10 of 141

References

qsecure.com.cy/resources/advisories/sangoma-freepbx-linux-insecure-permissions

www.freepbx.org

www.sangoma.com/products/open-source/

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

8.1 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.3%

JSON

Related for CVE-2023-26567

cvelist1 prion1 nvd1