Privilege Escalation

2021-11-0510:27:37

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

42.2%

JSON

freeswitch is vulnerable to privilege escalation. The vulnerability exists due to SIP requests of the type SUBSCRIBE are not authenticated by default.

CPENameOperatorVersion
freeswitch:edgeeq1.10.6-r0
freeswitch:edgeeq1.10.5-r2
freeswitch:edgeeq1.10.3-r0
freeswitch:edgeeq1.10.6-r2
freeswitch:edgeeq1.10.2-r0
freeswitch:edgeeq1.8.7-r1
freeswitch:edgeeq1.10.6-r1
freeswitch:3.15eq1.10.6-r2
freeswitch:edgeeq1.10.6-r0
freeswitch:edgeeq1.10.5-r2

Name	Operator	Version
freeswitch:edge	eq	1.10.6-r0
freeswitch:edge	eq	1.10.5-r2
freeswitch:edge	eq	1.10.3-r0
freeswitch:edge	eq	1.10.6-r2
freeswitch:edge	eq	1.10.2-r0
freeswitch:edge	eq	1.8.7-r1
freeswitch:edge	eq	1.10.6-r1
freeswitch:3.15	eq	1.10.6-r2
freeswitch:edge	eq	1.10.6-r0
freeswitch:edge	eq	1.10.5-r2