The Sangoma Session Border... CVE-2019-12148

- AV AC AU C I A
发布: 2019-10-18
修订: 2019-11-19

The Sangoma Session Border Controller (SBC) 2.3.23-119 GA web interface is vulnerable to an authentication bypass via an argument injection vulnerability involving special characters in the username field. Upon successful exploitation, a remote unauthenticated user can login into the device's admin web portal without providing any credentials. This affects /var/webconfig/gui/Webconfig.inc.php.

0%
当前有1条漏洞利用/PoC
产品及版本信息(CPE)暂不可用