Three GHSA issues related to endpoint were published 2025-10-14T17:30:00Z covering the following CVEs:
- CVE-2025-59051 / GHSA-qgj3-f9gj-98v9
- CVE-2025-61675 / GHSA-292p-rj6h-54cp
- CVE-2025-61678 / GHSA-7p8x-8m3m-58j9
Please note that the above three issues all score at the same 0.9 (out of 10.0) on a modified CVSS 4.1 score (as discussed in my blog post from last month.)
Also @gsiemon would you please share the requested information regarding your module repository configuration details (e.g. MODULE_REPO setting) so that the (potential) security notification/update issue may be investigated further (along with your current FreePBX module versions, especially framework) ?