Volerion logoVolerion
Volerion logoVolerion

Sangoma Switchvox Plaintext SIP Credential Exposure Vulnerability

Vulnerability

A vulnerability exists in Sangoma Switchvox versions prior to 8.4, where cleartext SIP authentication credentials are stored in backup files. These `.svb` files, which contain unencrypted carrier authentication details including usernames, passwords, and connection information, can be accessed by any party with possession of the backup. This exposure allows for direct authentication to upstream SIP carriers, potentially leading to impersonation of the PBX endpoint at the carrier level.

Impact

The vulnerability allows for exposure of SIP trunk credentials, which can be used to impersonate the PBX endpoint with the upstream carrier. This could result in outbound toll fraud, caller ID spoofing, interception or rerouting of inbound calls, and creation of denial-of-service conditions for inbound calls.

Remediation

Users can update to Sangoma Switchvox version 8.4 or later to address this vulnerability.

Added: May 12, 2026, 1:20 AM
Updated: May 12, 2026, 1:20 AM

Vulnerability Rating

Custom Algorithm
spread
4.5
impact
2.5
exploitability
9.1
remediation
7.7
relevance
8.1
threat
6.4
urgency
2.9
incentive
8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.