CVE-2023-43336 Information

Description

Sangoma Technologies FreePBX before cdr 15.0.18 16.0.40 15.0.16 and 16.0.17 was discovered to contain an access control issue via a modified parameter value e.g. changing extension=self to extension=101.

Reference

http://sangoma.com https://medium.com/@janirudransh/security-disclosure-of-vulnerability-cve-2023-23336-4429d416f826 http://freepbx.com