Filtered by vendor Pascom Cloud Phone System
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-45967 | 2 Igniterealtime, Pascom Cloud Phone System | 2 Openfire, * | 2022-07-12 | 7.5 HIGH | 9.8 CRITICAL |
An issue was discovered in Pascom Cloud Phone System before 7.20.x. A configuration error between NGINX and a backend Tomcat server leads to a path traversal in the Tomcat server, exposing unintended endpoints. |