CVE-2025-34332 | AudioCodes Fax Server/Auto-Attendant IVR up to 2.6.23 Windows Service ajaxPost.php system default permission

A vulnerability classified as critical has been found in AudioCodes Fax Server and Auto-Attendant IVR up to 2.6.23. This affects the function system of the file ajaxPost.php of the component Windows Service. Performing manipulation results in incorrect default permissions. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is identified as CVE-2025-34332. The attack is only possible with local access. There is not any exploit available.VulDB Recent EntriesRead More