Tag: CVE-2025-57819

A critical vulnerability has been uncovered—and almost immediately weaponized—in the IP telephony ecosystem through FreePBX. Signs of widespread compromise were first reported on August 21, 2025, when administrators began noticing identical symptoms and suspicious traces across their systems. Researchers at watchTowr Labs have since confirmed that the flaw enables unauthenticated remote exploitation via the commercial…