high · tech · Disclosed Feb 3, 2026

Sangoma FreePBX

Sangoma FreePBX OS Command Injection Vulnerability — Sangoma FreePBX Endpoint Manager contains an OS command injection vulnerability that could allow for a post-authentication command injection by an authenticated known

Original Disclosure

https://nvd.nist.gov/vuln/detail/CVE-2025-64328

Read original

Severity

high

Sector

tech

Disclosure date

February 3, 2026

Indexed

2 months, 1 week ago

Check Your Exposure → Browse All Breaches View Live Map