RedTeam Pentesting discovered a vulnerability in the web-based management interface of the Auerswald COMpact 5500R PBX which allows low-privileged users to access passwords of administrative user accounts. Affected versions include 8.0B and below.
dac326b33fff7e529507312696bf7c1980ce40578237f9caf02f0b838930f9b6