← Back

CVE-2023-26567

nvd nist
Published: Apr 26, 2023Modified: Feb 3, 2025

JSON object

Loading...
8.1
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Exploitability: 2.8 / Impact: 5.2
Source: NVD

Description

Sangoma FreePBX 1805 through 2302 (when obtained as a ,.ISO file) places AMPDBUSER, AMPDBPASS, AMPMGRUSER, and AMPMGRPASS in the list of global variables. This exposes cleartext authentication credentials for the Asterisk Database (MariaDB/MySQL) and Asterisk Manager Interface. For example, an attacker can make a /ari/asterisk/variable?variable=AMPDBPASS API call.

Affected (14)

Sangoma
1 product
Freepbx Linux 7
Configuration A
14 vulnerable
Vulnerable SoftwareAffected Versions
Sangoma
Freepbx Linux 7
Version 1805
Freepbx Linux 7
Version 1904
Freepbx Linux 7
Version 1910
Freepbx Linux 7
Version 2002
Freepbx Linux 7
Version 2008
Freepbx Linux 7
Version 2011
Freepbx Linux 7
Version 2104
Freepbx Linux 7
Version 2105
Freepbx Linux 7
Version 2109
Freepbx Linux 7
Version 2112
Freepbx Linux 7
Version 2201
Freepbx Linux 7
Version 2202
Freepbx Linux 7
Version 2203
Freepbx Linux 7
Version 2302

Related CWEs

CWE-522
Insufficiently Protected Credentials
The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

References (6)

Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Product
Source: cve@mitre.org
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Product

Timeline

No history available yet.