THREATOPS
THREAT OPSCVEs › CVE-2025-57819

CVE-2025-57819 — Sangoma FreePBX Authentication Bypass Vulnerability

CISA KEVExploited: confirmedSangoma

Sangoma FreePBX contains an authentication bypass vulnerability due to insufficiently sanitized user-supplied data allows unauthenticated access to FreePBX Administrator leading to arbitrary database manipulation and remote code execution.

Vulnerability details