Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-66039

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.

Published

2025-12-09T22:16:15.757

Last Modified

2026-02-02T14:47:12.183

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-287

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	sangoma	freepbx	< 16.0.44	Yes
Application	sangoma	freepbx	< 17.0.23	Yes

References

https://github.com/FreePBX/framework/commit/04224253156543cd9932b90458660b2f19fc0e35#diff-72f14a52840a61504a8e03cd195035b44e488aecd634b001bc6412a04bdc940bR20-R50 Product ([email protected])
https://github.com/FreePBX/security-reporting/security/advisories/GHSA-9jvh-mv6x-w698 Mitigation, Vendor Advisory ([email protected])
https://www.freepbx.org/watch-what-we-do-with-security-fixes-%f0%9f%91%80 Not Applicable, Vendor Advisory ([email protected])