Submit #797469: Eleveo Call Recording 9.7.0 Broken Access Controlinfo

TitleEleveo Call Recording 9.7.0 Broken Access Control
DescriptionA Broken Access Control vulnerability exists in /callrec/audio.jsp endpoint of Eleveo Call Recording 9.7.0, which allows low-privileged authenticated users to bypass administrator-defined access filters and access metadata related to call recordings. Although administrators can configure filters to restrict which call recordings a user may access, the backend does not properly enforce these restrictions when processing certain audio playback requests. By invoking the affected endpoint directly, a user can retrieve recording metadata that falls outside the scope of their permitted filters, thereby bypassing the intended access controls. Impact Unauthorized access to restricted call recording metadata, allowing users to retrieve information about recordings that should remain inaccessible according to administrator-defined filters. PoC Comprehensive reproduction steps, including supporting screenshots, are available via the shared private link. Public disclosure will occur on GitHub after the responsible disclosure period of approximately 90 days has elapsed. Note Contact with the vendor was initiated on March 10, and no response has been received as of the submission date. The provided PoC is accessible via a restricted link and is intended solely for review purposes by anyone possessing the link. I plan to reserve a CVE early, with public disclosure scheduled after 90 days from the initial contact date, at which point the advisory will be published on my GitHub repository. The information shared here is provided exclusively to the VulnDB team to ensure awareness and understanding of the vulnerability details.
Source⚠️ https://drive.google.com/file/d/14r-7V9dJHuoBPpuSj-puFzujq149Mbry/view?usp=sharing
User
 omarelshopky (UID 85487)
Submission04/05/2026 22:11 (3 months ago)
Moderation07/11/2026 11:33 (3 months later)
StatusAccepted
VulDB entry377779 [Eleveo Call Recording Software 9.7.0 /callrec/audio.jsp callId improper authorization]
Points20

Want to know what is going to be exploited?

We predict KEV entries!