Summary
A critical vulnerability exists in the FreePBX backup Module that allows authenticated attackers to execute arbitrary code on the server.
Authentication with a known username that has sufficient access permissions and/or write access to backup files is required.
Common Vulnerabilities and Exposures (CVE)
Requested
GitHub Security Advisory (GHSA)
GHSA-5hhg-w366-g6fh
Provider Urgency (choice of: Not Defined, Clear, Green, Amber, or Red)
A - Amber
Link to Published GHSA with More Details
Highlights
Provider Urgency score of Amber because of longevity and the persistence of old backups.