7 matches found
CVE-2025-57767
Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.15.2, 21.10.2, and 22.5.2, if a SIP request is received with an Authorization header that contains a realm that wasn't in a previous 401 response's WWW-Authenticate header, or an Authorization header wi...
CVE-2024-57767
MSFM before v2025.01.01 was discovered to contain a Server-Side Request Forgery SSRF via the component /file/download...
CVE-2024-57767
MSFM before v2025.01.01 was discovered to contain a Server-Side Request Forgery SSRF via the component /file/download...
CVE-2024-57767
MSFM before v2025.01.01 was discovered to contain a Server-Side Request Forgery SSRF via the component /file/download...
CVE-2024-57767
MSFM before v2025.01.01 was discovered to contain a Server-Side Request Forgery SSRF via the component /file/download...
CVE-2024-57767
CVE-2024-57767 affects MSFM prior to 2025.01.01 and describes a Server-Side Request Forgery (SSRF) via the "/file/download" component. The root cause is an SSRF vulnerability in the file-download functionality, enabling an attacker to access internal resources through the affected module. The CVS...
CVE-2024-57767
MSFM before v2025.01.01 was discovered to contain a Server-Side Request Forgery SSRF via the component /file/download...