CVE-2019-19006: Sangoma FreePBX Improper Authentication Vulnerability.
Sangoma FreePBX Improper Authentication Vulnerability. Sangoma FreePBX contains an improper authentication vulnerability that potentially allows unauthorized users to bypass password authentication and access services provided by the FreePBX admin.
- CISA KEV-listed (remediation due 2026-02-24)
- EPSS 21.6% (95.9% percentile)