CNNVD-202511-2198 Information

CNNVD ID

CNNVD-202511-2198

Related CVE

CVE-2025-34335

• CNNVD Published: 2025-11-19

Description (Chinese)

AudioCodes Fax Server是以色列AudioCodes公司的一个传真服务器。 AudioCodes Fax Server 2.6.23及之前版本存在安全漏洞，该漏洞源于许可证激活工作流中的命令注入，可能导致任意命令执行。

Description (English)

AudioCodes Fax Server is a fax server for the Israeli company AudioCodes. AudioCodes Fax Server 2.6.23 and previous versions had a security loophole, which stemmed from the injection of orders in the licence-activated workflow, which could lead to arbitrary enforcement.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

AudioCodes

Published

2025-11-19

Last Modified

2026-02-24

References

https://www.audiocodes.com/media/g1in2u2o/0548-product-notice-end-of-service-for-audiocodes-auto-attendant-ivr-solution.pdf https://pierrekim.github.io/advisories/2025-audiocodes-fax-ivr.txt https://pierrekim.github.io/blog/2025-11-20-audiocodes-fax-ivr-8-vulnerabilities.html https://www.vulncheck.com/advisories/audiocodes-fax-ivr-appliance-authenticated-command-injection-via-activatelicense https://access.redhat.com/security/cve/cve-2025-34335