VYPR
High severity7.8NVD Advisory· Published Aug 12, 2019· Updated Jun 17, 2026

CVE-2019-14935

CVE-2019-14935

Description

3CX Phone 15 on Windows has insecure permissions on the "%PROGRAMDATA%\3CXPhone for Windows\PhoneApp" installation directory, allowing Full Control access for Everyone, and leading to privilege escalation because of a StartUp link.

Affected products

1
  • 3CX/3CX Phonedescription

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.