WombatDialer Server-Side Access Control Bypass Vulnerability

Vulnerability

A server-side access control bypass vulnerability has been identified in WombatDialer versions prior to 25.02. This vulnerability could allow unauthorized users to access certain client-specific services without the required permissions. Exploitation involves reverse engineering the proprietary serialization protocol, which adds a layer of complexity to the attack.

Impact

Exploitation of this vulnerability could lead to unauthorized access to restricted client services.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WombatDialer Server-Side Access Control Bypass Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating