Unauthenticated Backup Upload Vulnerability in AudioCodes Fax Server and IVR Appliances
CVE-2025-34329

9.3CRITICAL

Key Information:

Vendor

Audiocodes Limited

Status
Audiocodes Fax/ivr Appliance
Vendor
CVE Published:
19 November 2025

What is CVE-2025-34329?

The AudioCodes Fax Server and Auto-Attendant IVR appliances up to version 2.6.23 are vulnerable due to an unauthenticated upload endpoint. This vulnerability enables attackers to upload files to the server, utilizing an attacker-controlled filename. The lack of authentication, authorization checks, and file type validation allows a remote attacker to exploit this flaw. In a default Windows deployment scenario, this can lead to significant risks, including arbitrary code execution, as it may allow essential server resources to be treated as executable code, potentially leading to severe system compromises.

Affected Version(s)

AudioCodes Fax/IVR Appliance 0 <= 2.6.23

References

https://www.audiocodes.com/media/g1in2u2o/0548-product-no...
vendor-advisorypatchmitigation
https://pierrekim.github.io/blog/2025-11-20-audiocodes-fa...
technical-descriptionexploit
https://pierrekim.github.io/advisories/2025-audiocodes-fa...
technical-descriptionexploit

CVSS V4

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Pierre Barre
JSON
.
CVE-2025-34329 : Unauthenticated Backup Upload Vulnerability in AudioCodes Fax Server and IVR Appliances