Vulnerabilities > CVE-2023-37599 - Exposure of Resource to Wrong Sphere vulnerability in Issabel PBX 4.0.06

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
issabel
CWE-668
NVD
Published: 2023-07-13
Updated: 2023-07-27

Summary

An issue in issabel-pbx v.4.0.0-6 allows a remote attacker to obtain sensitive information via the modules directory

Vulnerable Configurations

Part Description Count
Application
Issabel
1

Common Weakness Enumeration (CWE)

References