CVE-2025-34330 | AudioCodes Fax Server/Auto-Attendant IVR up to 2.6.23 ajaxPromptUploadFile.php unrestricted upload

A vulnerability has been found in AudioCodes Fax Server and Auto-Attendant IVR up to 2.6.23 and classified as critical. The affected element is an unknown function of the file AudioCodes_files/utils/IVR/diagram/ajaxPromptUploadFile.php. This manipulation causes unrestricted upload. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is registered as CVE-2025-34330. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More