Axon Pbx Security Vulnerabilities and Issues — Axon Pbx CVE List

Lucene search

NchAxon Pbx

4 matches found

CVE•added 2021/07/25 10:15 p.m.•57 views

CVE-2021-37441

NCH Axon PBX v2.22 and earlier allows path traversal for file deletion via the logdelete?file=/.. substring.

8.8CVSS8.7AI score0.00496EPSS

CVE•added 2021/07/25 10:15 p.m.•52 views

CVE-2021-37440

NCH Axon PBX v2.22 and earlier allows path traversal for file disclosure via the logprop?file=/.. substring.

6.5CVSS6.4AI score0.00228EPSS

CVE•added 2018/06/01 5:29 p.m.•27 views

CVE-2018-11551

AXON PBX 2.02 contains a DLL hijacking vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system. The vulnerability exists because a DLL file is loaded by 'pbxsetup.exe' improperly.

9.3CVSS7.9AI score0.0143EPSS

CVE•added 2018/06/01 5:29 p.m.•26 views

CVE-2018-11552

There is a reflected XSS vulnerability in AXON PBX 2.02 via the "AXON->Auto-Dialer->Agents->Name" field. The vulnerability exists due to insufficient filtration of user-supplied data. A remote attacker can execute arbitrary HTML and script code in a browser in the context of the vulnerable...

6.1CVSS6.2AI score0.00307EPSS