pascom GmbH & Co. KG

pascom GmbH & Co. KG

Three security vulnerabilities that were affecting Pascom Cloud Phone System were recently discovered by the researchers.

The attackers could use these vulnerabilities to string in a chain-like fashion attack to access non-exposed endpoints of the victim by sending arbitrary GET requests to obtain the administrator password.

These can also be used to execute commands as root and can give the attacker full control of the machine and an easy way to escalate privileges

Source: https://thehackernews.com/2022/03/critical-rce-bugs-found-in-pascom-cloud.html?&web_view=true

"id": "PAS3512322",
"linkid": "pascom-net",
"type": "Vulnerability",
"date": "03/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.