#freepbx-security

[ follow ]
#cve-2025-64328 #command-injection-vulnerability #web-shell-infections #active-exploitation
fromThe Hacker News
4 hours ago

900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks

The impact is that any user with access to the FreePBX Administration panel could leverage this vulnerability to execute arbitrary shell commands on the underlying host. An attacker could leverage this to obtain remote access to the system as the asterisk user.
Information security
Information security
fromSecurityWeek
9 hours ago

900 Sangoma FreePBX Instances Infected With Web Shells

Approximately 900 Sangoma FreePBX instances remain infected with web shells following exploitation of CVE-2025-64328, a post-authentication command injection vulnerability patched in November 2025.
[ Load more ]