Critical Vulnerability Information Vulnerability Title AudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated Prompt File Upload via ajaxPromptUploadFile.php Severity MEDIUM Release Date 2025-09-19 Affected Versions AudioCodes Fax/IVR Appliance <= 2.6.23 Scope of Impact The product was announced as "End-of-Service" on December 31, 2024. CVE and CWE CVE-2025-34330 CWE-434 Unrestricted Upload of File with Dangerous Type CVSS Score 6.9 CVSS v4 Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Reference Links AudioCodes EoS/EoL Product Notice Researcher Blog Researcher Blog Discoverer Pierre Barre Vulnerability Description An unauthenticated prompt file upload vulnerability exists in the web management component (F2MAdmin) of AudioCodes Fax Server and Auto-Attendant IVR appliances, versions 2.6.23 and earlier. This vulnerability allows attackers to upload files via the endpoint . The uploaded files are written to the directory without authentication, authorization, or file type validation. This could lead to tampering with IVR audio content or enable further attacks.