CVE-2025-64328HIGH · 7.2TrackedCISA KEV

Sangoma · FreePBX

Sangoma FreePBX Endpoint Manager contains an OS command injection vulnerability that could allow for a post-authentication command injection by an authenticated known user via the testconnection -> check_ssh_connect() function. An attacker can leverage this vulnerability to potentially obtain remote access to the system as an asterisk user.

Disclosed

2025-11-07

215 days ago

Status

no honeypot capture yet

on CISA KEV — watching

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

https://github.com/FreePBX/security-reporting/security/advisories/GHSA-vm9p-46mv-5xvw
https://nvd.nist.gov/vuln/detail/CVE-2025-64328

↗ NVD ↗ CISA KEV ↗ Search analyses