CVE-2021-45310

Published: Feb 14, 2022

Modified: Aug 4, 2024

PUBLISHED

Description

Sangoma Technologies Corporation Switchvox Version 102409 is affected by an information disclosure vulnerability due to an improper access restriction. Users information such as first name, last name, acount id, server uuid, email address, profile image, number, timestamps, etc can be extracted by sending an unauthenticated HTTP GET request to the https://Switchvox-IP/main?cmd=invalid_browser.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/IthacaLabs/Sangoma/tree/main/Switchvox_Version%20102409

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-45310

Description

Affected Products

References