Multiple race conditions in WANPIPE before 3.3.6 have unknown impact and attack vectors related to "bri restart logic."
CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:CSangoma Wanpipe
HWSangoma3.3.0beta3.3.1beta3.3.2.1beta3.3.2beta3.3.3beta3.3.4beta3.3.5beta
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Race Condition
CWE
Related vulnerabilities
CVE-2025-57819CRITICAL10.0⚠ KEVPL ✓ten sam vendor
Krytyczna podatność RCE i SQL injection w Sangoma FreePBX (bez uwierzytelnienia)
CVE-2019-19006CRITICAL9.8⚠ KEVten sam vendor
Sangoma FreePBX 115.0.16.26 and below, 14.0.13.11 and below, 13.0.197.13 and below have Incorrect Access Contr...
CVE-2026-46376CRITICAL9.3PL ✓ten sam vendor
FreePBX UCP: dostęp bez uwierzytelnienia przez wbudowane dane logowania
CVE-2025-66039CRITICAL9.3PL ✓ten sam vendor
FreePBX Endpoint Manager — pominięcie uwierzytelnienia (Auth Bypass)
CVE-2025-32105CRITICAL9.8PL ✓ten sam vendor
Buffer overflow w serwerze HTTP Sangoma IMG2020 umożliwia RCE