CVE-2021-45491

Name of the Vulnerable Software and Affected Versions 3CX System through 2022-03-17

Description The issue concerns the storage of cleartext passwords in a database. This means that passwords are stored in a readable format, potentially allowing unauthorized access to sensitive information.

Recommendations For 3CX System through 2022-03-17, consider updating to a version released after 2022-03-17 to ensure passwords are stored securely. As a temporary workaround, restrict access to the database to minimize the risk of exploitation. Avoid using the password variable in any database queries until the issue is resolved.