by @jakaba
24 Jun 2024

Issabel Authenticated Remote Code Execution (CVE-2024-0986)

by @jakaba
24 Jun 2024

Issabel Authenticated Remote Code Execution (CVE-2024-0986)

CVEs

9.8 Critical Severity

Apps

P
PBXIssabel
4.0.0-6.*
20200102.*
2.11.*
4.0.0.*
4.*
-.*

Screenshots from the blog posts

images/clxn2wrzq7cpq1joiaoishhqr.jpgimages/clxn2wrzq7cpq1joiaoishhqr.jpg

Summary

CVE-2024-0986 is a critical OS command injection vulnerability in Issabel PBX 4.0.0's Asterisk-Cli component, allowing remote exploits.

Description

users/photos/clj8b3h1k16g10uoihwvzgsxi.png

@jakaba

74 posts

Total vcoins

64.3K

Social media links

Comments (0)