Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-0986
HistoryJan 29, 2024 - 12:15 a.m.

Command injection

2024-01-2900:15:00
PRIOn knowledge base
www.prio-n.com
14
vulnerability
issabel pbx
critical
remote attack
os command injection
asterisk-cli
disclosed exploit
vendor non-responsive

7.7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.5%

JSON

A vulnerability was found in Issabel PBX 4.0.0. It has been rated as critical. This issue affects some unknown processing of the file /index.php?menu=asterisk_cli of the component Asterisk-Cli. The manipulation of the argument Command leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-252251. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CPENameOperatorVersion
pbxeq4.0.0

Related

cve 1
nvd 1
cvelist 1
cve
cve
CVE-2024-0986
2024-01-29 00:15:07
nvd
nvd
CVE-2024-0986
2024-01-29 00:15:07
cvelist
cvelist
CVE-2024-0986 Issabel PBX Asterisk-Cli os command injection
2024-01-28 23:31:04

7.7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.5%

JSON
Related for PRION:CVE-2024-0986
cve1nvd1cvelist1