A critical zero-day vulnerability in FreePBX has been actively exploited, allowing unauthorized access and potential remote code execution on exposed systems. Users must urgently update their systems and restrict internet access to prevent compromise. #FreePBX #CVE-2025-57819
Keypoints
- The vulnerability CVE-2025-57819 affects multiple FreePBX versions, including 15, 16, and 17.
- Active exploitation has been observed since August 21, 2025, targeting systems with poor access controls.
- The flaw allows unauthenticated access, database manipulation, and remote code execution through user input sanitization issues.
- Indicators of compromise include modified configuration files, suspicious web requests, and unusual activity in call logs and user accounts.
- Users are advised to upgrade to latest versions, restrict public access, and scan for signs of compromise immediately.
Read More: https://thehackernews.com/2025/08/freepbx-servers-targeted-by-zero-day.html