Security Advisory

CVE-2024-8504

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-10 19:23:39

Last updated 2025-11-04 16:16:06

Assigner KoreLogic

State PUBLISHED

Description

An attacker with authenticated access to VICIdial as an "agent" can execute arbitrary shell commands as the "root" user. This attack can be chained with CVE-2024-8503 to execute arbitrary shell commands starting from an unauthenticated perspective.

← Browse all CVEs View on cve.org ↗