High severity8.8NVD Advisory· Published Apr 4, 2023· Updated Jun 17, 2026
CVE-2023-25355
CVE-2023-25355
Description
CoreDial sipXcom up to and including 21.04 is vulnerable to Insecure Permissions. A user who has the ability to run commands as the daemon user on a sipXcom server can overwrite a service file, and escalate their privileges to root.
Affected products
2- CoreDial/sipXcomdescription
Patches
Vulnerability mechanics
References
1- seclists.org/fulldisclosure/2023/Mar/5nvdExploitMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.