216.73.217.176

CVE-2025-67736

· Published 16/12/2025 01:15 · Modified 18/12/2025 17:42

Labels: CVE-2025-67736 2025-12-16CVE-2025-67736[email protected]

Essential information

Published
16/12/2025 01:15
Modified
18/12/2025 17:42
Author
Creator
CVSS
8.6 HIGH (v3) 8.6 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

The FreePBX module tts (Text to Speech) for FreePBX, an open-source web-based graphical user interface (GUI) that manages Asterisk. Versions prior to 16.0.5 and 17.0.5 are vulnerable to SQL injection by authenticated users with administrator access. Authenticated users with administrative access to the Administrator Control Panel (ACP) can leverage this SQL injection vulnerability to extract sensitive information from the database and execute code on the system as the `asterisk` user with chained elevation to `root` privileges. Users should upgrade to version 16.0.5 or 17.0.5 to receive a fix.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
sangoma / freepbx cpe:2.3:a:sangoma:freepbx:*:*:*:*:*:*:*:*
sangoma / freepbx cpe:2.3:a:sangoma:freepbx:*:*:*:*:*:*:*:*

References