AudioCodes Fax Server and Auto-Attendant IVR Appliances World-Writable Webroot Local Privilege Escalation Vulnerability

Vulnerability

A vulnerability exists in AudioCodes Fax Server and Auto-Attendant IVR appliances in versions through 2.6.23. These appliances set the web document root to C:\F2MAdmin\F2E with excessively permissive file system permissions. This misconfiguration allows authenticated local users to modify files in this directory. Since the web server process operates under the NT AUTHORITY\SYSTEM account, any scripts created or altered by local users can be executed via HTTP requests, leading to arbitrary code execution with SYSTEM privileges.

Impact

Exploitation of this vulnerability allows authenticated local users to execute arbitrary code with SYSTEM privileges on the affected appliance.

Added: Nov 19, 2025, 5:36 PM

Updated: Nov 19, 2025, 8:07 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

0.0

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

0.0

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AudioCodes Fax Server and Auto-Attendant IVR Appliances World-Writable Webroot Local Privilege Escalation Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating