CVE-2022-48483

Name of the Vulnerable Software and Affected Versions 3CX versions prior to 18 Hotfix 1 build 18.0.3.461

Description The issue allows unauthenticated remote attackers to read files in the %WINDIR%system32 directory via directory traversal in the /Electron/download endpoint, specifically when using a path component with a drive letter and backslash characters.

Recommendations For versions prior to 18 Hotfix 1 build 18.0.3.461, update to version 18 Hotfix 1 build 18.0.3.461 or later to resolve the issue. As a temporary workaround, consider restricting access to the /Electron/download endpoint to minimize the risk of exploitation.