CVE advisoryKnown Exploit
CVE-2025-57819
FreePBX: Unauthenticated Access to Administrator Leads to Code Execution.
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A vulnerability in FreePBX allows unauthenticated access, enabling database manipulation and remote code execution. This poses a significant business risk to organizations utilizing affected systems. Mitigation is available through vendor patching.