CVE-2021-43404

Name of the Vulnerable Software and Affected Versions FusionPBX versions prior to 4.5.30

Description An issue was discovered where the FAX file name may contain risky characters, potentially leading to security issues.

Recommendations For versions prior to 4.5.30, update to version 4.5.30 or later to resolve the issue. As a temporary workaround, consider validating and sanitizing FAX file names to prevent the use of risky characters until a patch is applied. Restrict access to FAX functionality to minimize the risk of exploitation.