CVE-2025-2494 in Softdial Contact CenterИнформация

Сводка

по MITRE • 18.03.2025

Unrestricted file upload to Softdial Contact Center of Sytel Ltd. This vulnerability could allow an attacker to upload files to the server via the ‘/softdial/phpconsole/upload.php’ endpoint, which is protected by basic HTTP authentication. The files are uploaded to a directory exposed by the web application, which could result in code execution, giving the attacker full control over the server.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Ответственный

INCIBE

Резервировать

18.03.2025

Раскрытие

18.03.2025

Модерация

принято

Вход

VDB-299999

EPSS

0.00580

KEV

Нет

Деятельности

Очень низкий

Источники

Might our Artificial Intelligence support you?

Check our Alexa App!