Tbowan

**Name of the Vulnerable Software and Affected Versions** Telesoft VitalPBX versions prior to 3.2.1 **Description** The issue concerns missing access control in the backup system, allowing attackers to access sensitive data such as PJSIP and SIP extension credentials, cryptographic keys, and voicemails files via unspecified vectors. **Recommendations** For versions prior to 3.2.1, update to version 3.2.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the backup system to minimize the risk of exploitation.