Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
4063 articles · 176698 vulns · 37/41 feeds (7d)
← Back to list
EST
PRE-CVEPATCHED
freepbx · security-reporting ucp

Unauthenticated Remote Code Execution in FreePBX UCP via Socket.IO Namespace Auth Bypass and AMI Action Injection

72% confidence

Description

Unauthenticated remote code execution in FreePBX UCP via socket.io namespace auth bypass and AMI action injection

Affected Products

VendorProductVersions
freepbxsecurity-reporting ucp< 17.0.9

Related News (1 articles)

Tier B
CCCS Canada2h ago
FreePBX security advisory (AV26–711)
→ No new info (linked only)
CISA KEV❌ No
Actively exploited❌ No
Patch available
17.0.9
PublishedJul 17, 2026
Last enriched1h ago
Tags
rceauth-bypassami-injection
Trending Score30
Source articles1
Independent1
Info Completeness6/14
Missing: cve_id, cvss, epss, cwe, kev, exploit, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

NONECVE-2026-44237
FreePBX: Authenticated Access can lead to Subsequent OAuth2 Authentication Bypass in API Module
NONECVE-2026-26978EXP
Free PBX backup: Deserialization of Untrusted Data in admin/modules/backup/Models/BackupSplFileInfo.php
NONECVE-2026-44239EXP
FreePBX: Authenticated Local File Inclusion in Dashboard Module
NONECVE-2026-40520
FreePBX api module Command Injection via GraphQL
NONECVE-2026-44238EXP
FreePBX: Authenticated SQL Injection via ORDER BY in CDR Reports

Pin to Dashboard

Verification

State: reported
Confidence: 72%

Vulnerability Timeline

CVE Published
Jul 17, 2026
Patch Available
Jul 17, 2026
Discovered by ZDM
Jul 17, 2026