Critical Zero-Day Vulnerability in FreePBX (CVE-2025-57819) Actively Exploited

A critical zero-day vulnerability, identified as CVE-2025-57819 with a CVSS score of 10.0, has been discovered in FreePBX, a popular open-source telephony platform. This vulnerability is actively being exploited and affects systems where the Admin Control Panel (ACP) is exposed to the internet. FreePBX provides a web-based graphical interface for managing VoIP systems, making it a target for attackers seeking to execute arbitrary code.

The technical implications of this vulnerability are severe. Systems with publicly accessible ACPs are at high risk of compromise. Attackers can exploit this vulnerability to gain control of the FreePBX system, potentially leading to eavesdropping on calls, unauthorized call making, or disruption of communication services.

The impact on the cybersecurity landscape is substantial. VoIP systems are critical for many organizations, and a compromise could result in data breaches, financial losses, and reputational damage. Organizations using FreePBX should immediately assess their exposure and take mitigative actions, such as restricting access to the ACP and applying patches as soon as they become available.

Expert insights suggest that organizations should adhere to the principle of least privilege and ensure that administrative interfaces are not exposed to the internet unless absolutely necessary. Continuous monitoring for signs of compromise and having a robust incident response plan are also crucial steps in mitigating the risk posed by this vulnerability. Additionally, network segmentation can help limit the impact of a potential compromise. Organizations should also ensure that their systems are up-to-date with the latest security patches and that they have a plan in place for responding to security incidents.