CVE-2025-30004 in CompletePBXinfo

Zusammenfassung

von MITRE • 31.03.2025

Xorcom CompletePBX is vulnerable to command injection in the administrator Task Scheduler functionality, allowing for attackers to execute arbitrary commands as the root user.




This issue affects CompletePBX: all versions up to and prior to 5.2.35

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Zuständig

VulnCheck

Reservieren

13.03.2025

Veröffentlichung

31.03.2025

Moderieren

akzeptiert

Eintrag

VDB-302205

CPE

bereit

EPSS

0.03853

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!