CNNVD-202511-2203 Information

CNNVD ID

CNNVD-202511-2203

Related CVE

CVE-2025-34330

• CNNVD Published: 2025-11-19

Description (Chinese)

AudioCodes Fax Server是以色列AudioCodes公司的一个传真服务器。 AudioCodes Fax Server 2.6.23及之前版本存在安全漏洞，该漏洞源于未经验证的提示上传端点，可能导致文件篡改和进一步攻击。

Description (English)

AudioCodes Fax Server is a fax server for the Israeli company AudioCodes. AudioCodes Fax Server 2.6.23 and previous versions had a security loophole, which originated from the uploading of unverified tips and could lead to document manipulation and further attacks.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

AudioCodes

Published

2025-11-19

Last Modified

2026-02-24

References

https://www.audiocodes.com/media/g1in2u2o/0548-product-notice-end-of-service-for-audiocodes-auto-attendant-ivr-solution.pdf https://pierrekim.github.io/advisories/2025-audiocodes-fax-ivr.txt https://pierrekim.github.io/blog/2025-11-20-audiocodes-fax-ivr-8-vulnerabilities.html https://www.vulncheck.com/advisories/audiocodes-fax-ivr-appliance-unauthenticated-prompt-file-upload-via-ajaxpromptuploadfile https://access.redhat.com/security/cve/cve-2025-34330