what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Appsecco Security Team

Sangoma SBC 2.3.23-119-GA Authentication Bypass

Posted Oct 18, 2019

Authored by Appsecco Security Team | Site appsecco.com

A remotely exploitable vulnerability exists in the 2.3.23-119-GA version of Sangoma SBC that would allow an unauthenticated user to bypass authentication and login as a non-existent user but with complete access to the dashboard including additional privileged user creation capabilities.

tags | exploit, bypass

advisories | CVE-2019-12148

SHA-256 | c1a3913d4d49d918d2edfe442e39cf4c9f77f13de1fcfde2bc856b1c6f69200d

Download | Favorite | View

Sangoma SBC 2.3.23-119-GA Unauthenticated User Creation

Posted Oct 18, 2019

Authored by Appsecco Security Team | Site appsecco.com

A remotely exploitable vulnerability exists in the 2.3.23-119-GA version of Sangoma SBC that would allow an unauthenticated user to create a privileged user on the system using the web application login interface.

tags | exploit, web, bypass

advisories | CVE-2019-12147

SHA-256 | 7e1eb8784b9d8c0dcef3b52b414558e0863dd0159c0dddd2ff205e7efaa513f9

Download | Favorite | View

Sangoma NetBorder / Vega Session Controller Remote Command Execution

Posted Jan 11, 2018

Authored by Appsecco Security Team | Site appsecco.com

Sangoma NetBorder / Vega Session Controller versions prior to 2.3.12-80-GA allows remote unauthenticated attackers to execute arbitrary commands via the web interface.

tags | exploit, remote, web, arbitrary

SHA-256 | 23b396713d3f48935304fe0c1474d19546d2999488112fed51d423e48f2e36ba

Download | Favorite | View