Information Disclosure Vulnerability in Sangoma Technologies Switchvox
CVE-2021-45310
5.3MEDIUM
What is CVE-2021-45310?
Sangoma Technologies Switchvox Version 102409 is impacted by an information disclosure vulnerability allowing unauthorized access to sensitive user information. By sending an unauthenticated HTTP GET request to the Switchvox application, attackers can retrieve private details such as users' first names, last names, account IDs, server UUIDs, email addresses, profile images, and more. This flaw poses a significant risk to user data privacy and necessitates prompt security measures.