Vulnerabilities > CVE-2021-43403 - Unspecified vulnerability in Fusionpbx
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
An issue was discovered in FusionPBX before 4.5.30. The log_viewer.php Log View page allows an authenticated user to choose an arbitrary filename for download (i.e., not necessarily freeswitch.log in the intended directory).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 9 |