CVE-2025-66039CRITICAL 9.8EPSS p85.5%

CVE-2025-66039CVE-2025-66039

Description

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS2.98% probability of exploitation · percentile 85.5% · 2026-06-19T12:03:05Z
Published2025-12-09
Last modified2026-02-02

Underlying weaknesses· 1

CWE-287

References

  1. https://github.com/FreePBX/framework/commit/04224253156543cd9932b90458660b2f19fc0e35#diff-72f14a52840a61504a8e03cd195035b44e488aecd634b001bc6412a04bdc940bR20-R50
  2. https://github.com/FreePBX/security-reporting/security/advisories/GHSA-9jvh-mv6x-w698
  3. https://www.freepbx.org/watch-what-we-do-with-security-fixes-%f0%9f%91%80

1

TypeTargetConfidenceTier
WeaknessImproper Authenticationcwe-2870%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Sangoma FreePBX Authentication Bypass Vulnerability
CVE
CVE-2026-40520
CVE
CVE-2019-19006
CVE
CVE-2025-55211
CVE
CVE-2026-46376
CVE
CVE-2025-67039
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.