Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AudioCodes Limited — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting AudioCodes Limited. AI-powered Chinese analysis, POCs, and references for each vulnerability.

AudioCodes Limited develops unified communications and collaboration solutions, focusing on session border controllers and IP phones for enterprise networks. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and authentication bypasses. The company has addressed multiple CVEs, including critical RCE vulnerabilities in their Mediant series gateways that could allow unauthenticated attackers to take over systems. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities in their networking equipment highlights the importance of timely patching for organizations deploying their solutions.

Top products by AudioCodes Limited: AudioCodes Fax/IVR Appliance
CVE IDTitleCVSSSeverityPublished
CVE-2025-34335 AudioCodes Fax/IVR Appliance <= 2.6.23 Authenticated Command Injection via ActivateLicense.php — AudioCodes Fax/IVR ApplianceCWE-78 8.8AIHighAI2025-11-19
CVE-2025-34334 AudioCodes Fax/IVR Appliance <= 2.6.23 Authenticated Command Injection via TestFax.php & LPE — AudioCodes Fax/IVR ApplianceCWE-78 8.8AIHighAI2025-11-19
CVE-2025-34332 AudioCodes Fax/IVR Appliance <= 2.6.23 Insecure Service Control Scripts LPE — AudioCodes Fax/IVR ApplianceCWE-276 7.8AIHighAI2025-11-19
CVE-2025-34329 AudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated Backup Upload RCE via ajaxBackupUploadFile.php — AudioCodes Fax/IVR ApplianceCWE-434 9.8AICriticalAI2025-11-19
CVE-2025-34331 AudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated File Read via download.php — AudioCodes Fax/IVR ApplianceCWE-306 7.5AIHighAI2025-11-19
CVE-2025-34328 AudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated File Upload RCE via ajaxScript.php — AudioCodes Fax/IVR ApplianceCWE-434 9.8AICriticalAI2025-11-19
CVE-2025-34330 AudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated Prompt File Upload via ajaxPromptUploadFile.php — AudioCodes Fax/IVR ApplianceCWE-434 9.8AICriticalAI2025-11-19
CVE-2025-34333 AudioCodes Fax/IVR Appliance <= 2.6.23 World-Writable Webroot LPE — AudioCodes Fax/IVR ApplianceCWE-276 7.8AIHighAI2025-11-19

This page lists every published CVE security advisory associated with AudioCodes Limited. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.