CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

341 matches found

EUVD•added 2026/05/12 3:31 a.m.•13 views

EUVD-2026-29354

Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file...

3.2CVSS5.8AI score0.00095EPSS

Exploits0References3

NVD•added 2026/05/12 1:16 a.m.•15 views

CVE-2026-45362

Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file...

3.2CVSS0.00095EPSS

Exploits0References2

CVE•added 2026/05/12 12:40 a.m.•14 views

CVE-2026-45362

Summary : CVE-2026-45362 affects Sangoma Switchvox prior to version 8.4, where cleartext SIP authentication credentials are stored in a backup file. What’s affected : Switchvox software (versions before 8.4). Root cause / nature : Credentials are written in cleartext in a backup file, exposing SI...

3.2CVSS5.8AI score0.00095EPSS

Exploits0References2

Cvelist•added 2026/05/12 12:40 a.m.•36 views

CVE-2026-45362

Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file...

3.2CVSS0.00095EPSS

Exploits0References2

Vulnrichment•added 2026/05/12 12:40 a.m.•7 views

CVE-2026-45362

Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file...

3.2CVSS5.8AI score0.00095EPSS

Exploits0References2

ATTACKERKB•added 2026/05/12 12:40 a.m.•8 views

CVE-2026-45362

Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file...

3.2CVSS5.8AI score0.00095EPSS

Exploits0References3

Positive Technologies•added 2026/05/12 12:0 a.m.•11 views

PT-2026-39906

Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file...

3.2CVSS5.8AI score0.00095EPSS

Exploits0References3

CNNVD•added 2026/05/12 12:0 a.m.•8 views

Sangoma Technologies Switchvox 安全漏洞

Sangoma Technologies Switchvox is a telephone system developed by Sangoma Technologies in Canada, suitable for businesses of any size. Prior to the version 8.4 of Sangoma Technologies Switchvox, there was a security vulnerability. This vulnerability stemmed from the storage of plaintext SIP...

3.2CVSS5.8AI score0.00095EPSS

Exploits0References1

CISA KEV Catalog•added 2026/02/03 12:0 a.m.•9 views

Sangoma FreePBX OS Command Injection Vulnerability

Sangoma FreePBX Endpoint Manager contains an OS command injection vulnerability that could allow for a post-authentication command injection by an authenticated known user via the testconnection - checksshconnect function. An attacker can leverage this vulnerability to potentially obtain remote...

8.6CVSS5.7AI score0.84417EPSS

In wildExploits4

RedhatCVE•added 2026/01/09 12:39 p.m.•6 views

CVE-2023-43336

Sangoma Technologies FreePBX before cdr 15.0.18, 16.0.40, 15.0.16, and 16.0.17 was discovered to contain an access control issue via a modified parameter value, e.g., changing extension=self to extension=101...

8.8CVSS7.3AI score0.00824EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:29 a.m.•8 views

CVE-2019-12147

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

9.8CVSS7.3AI score0.02604EPSS

Exploits3References1

RedhatCVE•added 2026/01/07 9:26 a.m.•5 views

CVE-2019-12148

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to an authentication bypass via an argument injection vulnerability involving special characters in the username field. Upon successful exploitation, a remote unauthenticated user can login into the device's admin...

9.8CVSS7.6AI score0.03502EPSS

Exploits3References1

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2020-3110

Malware in sbrugna...

9.8CVSS9.4AI score0.02237EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-3798

Malware in sbrugna...

9.8CVSS9.2AI score0.03502EPSS

Exploits3References4