CVE-2025-64328 - Vulnerability Details

Threat entity extracted from intelligence sources

Frequency
7
occurrences
First Seen
January 29, 2026
Last Seen
May 22, 2026

CVE-2025-64328 is a vulnerability tracked across 5 threat clusters and 7 intelligence report mentions on ThreatCluster. First observed January 29, 2026; most recent activity May 22, 2026.

Related Threat Clusters

Recent Intelligence Reports

  • Hackers Use Six-Layer Persistence on FreePBX Systems — Gbhackers · May 22, 2026
  • INJ3CTOR3 Deploys JOMANGY Webshell in Advanced FreePBX Attacks — Thecyberexpress · May 22, 2026
  • Ongoing Cyberattack Exploits Sangoma FreePBX CVE-2025-64328: Over 900 Instances ... — Rescana · March 1, 2026
  • CVE-2025-64328 exploitation impacts 900 Sangoma FreePBX instances — Securityaffairs · March 1, 2026
  • WARNING: ~900 Sangoma FreePBX systems remain compromised via CVE-2025-64328, a ... — X · February 27, 2026
  • Risky Bulletin: Russian man investigated for extorting Conti ransomware group — News.Risky.Biz · February 27, 2026
  • Hackers Exploiting FreePBX Vulnerability to Deploy Webshell and Gain Control of Systems — Cybersecuritynews · January 29, 2026

CVSS v3.1 Breakdown