Critical Vulnerability Information Vulnerability Title Authenticated Command Injection in Network Scanning feature of Endpoint Manager Affected Versions endpoint (FreePBX 16): < 16.0.92 endpoint (FreePBX 17): < 17.0.6 Fixed Versions endpoint (FreePBX 16): 16.0.92 endpoint (FreePBX 17): 17.0.6 Vulnerability Description Summary: The Endpoint Manager module includes a Network Scanning feature that provides web-based access to nmap functionality for network device discovery. Insufficiently sanitized user-supplied input allows authenticated OS command execution as the asterisk user. Authentication with a known username is required. Mitigation Measures Update to the latest fixed version of the endpoint module. Protect your ACP from suspicious users. Remove users that should not have access. Firewall your FreePBX ACP HTTP/HTTPS/GraphQL ports. Scoring CVSS 4.0 Base vector string: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N Current CVSS v4.0 Base score: 8.6 (High) Current CVSS v4.0 more complete score: 6.1 (Medium) Alternative CVSS v4.1 score: 0.9 (Low) Additional Information CVE ID: CVE-2025-59051 Weaknesses: CWE-78