Missing access control in the backup system of Telesoft VitalPBX before 3.2.1 allows attackers to access the PJSIP and SIP extension credentials, cryptographic keys and voicemails files via unspecified vectors.Referenceshttps://www.arsouyes.org/blog/2022/2022-06-30-VitalPBX-0day