Security Advisory

CVE-2025-30005

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-31 16:45:04

Last updated 2025-12-27 16:47:40

Assigner VulnCheck

State PUBLISHED

Description

Xorcom CompletePBX is vulnerable to a path traversal via the Diagnostics reporting module, which will allow reading of arbitrary files and additionally delete any retrieved file in place of the expected report. This issue affects CompletePBX: all versions up to and prior to 5.2.35

← Browse all CVEs View on cve.org ↗