Vsc55

**Name of the Vulnerable Software and Affected Versions** OSS Endpoint Manager versions prior to 14.0.4 **Description** The OSS Endpoint Manager module for FreePBX has an issue where its activation can allow authenticated web users to read system files without permission, using the permissions of the webserver process. **Recommendations** For versions prior to 14.0.4, update to version 14.0.4 to resolve the issue.