CVE-2025-34328 | AudioCodes Fax Server/Auto-Attendant IVR up to 2.6.23 on Windows ajaxScript.php unrestricted upload

A vulnerability, which was classified as critical, was found in AudioCodes Fax Server and Auto-Attendant IVR up to 2.6.23 on Windows. Impacted is an unknown function of the file AudioCodes_files/utils/IVR/diagram/ajaxScript.php. The manipulation results in unrestricted upload. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is cataloged as CVE-2025-34328. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More