{"id":4189,"date":"2024-08-31T06:53:12","date_gmt":"2024-08-31T11:53:12","guid":{"rendered":"https:\/\/dialer.one\/?p=4189"},"modified":"2024-12-05T18:27:00","modified_gmt":"2024-12-05T23:27:00","slug":"august-2024-vicidial-security-update","status":"publish","type":"post","link":"https:\/\/dialer.one\/index.php\/august-2024-vicidial-security-update\/","title":{"rendered":"August 2024 VICIdial Security Update"},"content":{"rendered":"\n

August 2024 VICIdial Security Update<\/h1>\n\n\n\n

Please read this carefully as it contains important information regarding the security of your VICIdial system.<\/p>\n\n\n\n

The ViciDial Group recently conducted a security audit of VICIdial which resulted in the identification of severe vulnerabilities. We have patched these and submitted these changes to the code-base. Any system that is at SVN version 3848 or greater already has them. If your system is below that version, we strongly recommend that you upgrade to address these concerns. If you would like us to upgrade your system for you, please send a new email to\u00a0support@cyburdial.com<\/a>\u00a0and put “Security Upgrade” in the subject. A typical upgrade takes about 15 to 30 minutes of support time. You can see the seriousness of these exploit here: https:\/\/packetstormsecurity.com\/files\/181461\/VICIdial-2.14-917a-Remote-Code-Execution.html<\/a>
https:\/\/packetstormsecurity.com\/files\/181460\/VICIdial-2.14-917a-SQL-Injection.html<\/a><\/p>\n\n\n\n

To find the SVN version of your VICIdial installation, log into your administator account and go to “Admin”, then click on “System Settings”. It will be the second line from the top, on the right, under “SVN Version”.<\/p>\n\n\n\n

Please note, if your setup contains customizations done directly to VICIdial’s code, further review of your system will be needed as it may not be possible to upgrade you.<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

You can update your SVN by following this article: How to \u2013 Update your Vicidial version with subversion<\/a><\/p>\n\n\n\n

Chris aka carpenox<\/p>\n","protected":false},"excerpt":{"rendered":"

August 2024 VICIdial Security Update Please read this carefully as it contains important information regarding the security of your VICIdial system. The ViciDial Group recently conducted a security audit of VICIdial which resulted in the identification of severe vulnerabilities. We have patched these and submitted these changes to the code-base. Any system that is at […]<\/p>\n","protected":false},"author":1,"featured_media":4190,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"content-type":"","_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[529,96],"tags":[531,536],"class_list":["post-4189","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyburdial","category-vicidial","tag-security","tag-vicidial"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/dialer.one\/wp-content\/uploads\/2024\/08\/image.png","jetpack-related-posts":[{"id":2378,"url":"https:\/\/dialer.one\/index.php\/table-of-contents\/","url_meta":{"origin":4189,"position":0},"title":"Table of Contents – Knowledge Base","author":"carpenox","date":"March 7, 2022","format":false,"excerpt":"Welcome to my blog, some of you may know me from the ViciDial forums, I am carpenox and I am here to share my knowledge with everyone, for free!","rel":"","context":"In "Vicidial"","block_context":{"text":"Vicidial","link":"https:\/\/dialer.one\/index.php\/category\/vicidial\/"},"img":{"alt_text":"CyburDial","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/02\/image.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/02\/image.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/02\/image.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/02\/image.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/02\/image.png?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":2440,"url":"https:\/\/dialer.one\/index.php\/urgent-update-required-vicidial-security-vulnerability\/","url_meta":{"origin":4189,"position":1},"title":"URGENT UPDATE REQUIRED – ViciDial Security Vulnerability","author":"carpenox","date":"April 11, 2022","format":false,"excerpt":"URGENT UPDATE REQUIRED - ViciDial Security Vulnerability The ViciDial Group has released a warning for any SVN version below 3583, if you are below this version, update your system immediately. You can do so by following this article for SVN update. ViciDial versions below 3583 are Vulnerable! I hope everyone\u2026","rel":"","context":"In "Vicidial"","block_context":{"text":"Vicidial","link":"https:\/\/dialer.one\/index.php\/category\/vicidial\/"},"img":{"alt_text":"security update","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/04\/image.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/04\/image.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/04\/image.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/04\/image.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":2216,"url":"https:\/\/dialer.one\/index.php\/security-vulnerability-in-vicidial-codebase-update-now\/","url_meta":{"origin":4189,"position":2},"title":"Security vulnerability in Vicidial codebase – Update now!","author":"carpenox","date":"October 2, 2021","format":false,"excerpt":"Security vulnerability in Vicidial codebase - Update now! There is a major security hole in the vicidial codebase for any SVN version below 3509. Please see the email below. Vicidial exploit Please make sure you update your SVN and your OS, to update your SVN run these commands: cd \/usr\/src\/astguiclient\/trunksvn\u2026","rel":"","context":"Similar post","block_context":{"text":"Similar post","link":""},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/10\/image.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/10\/image.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/10\/image.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2021\/10\/image.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":3941,"url":"https:\/\/dialer.one\/index.php\/security-vulnerability-vicidial-svn-3754\/","url_meta":{"origin":4189,"position":3},"title":"Security Vulnerability – Vicidial SVN 3754","author":"carpenox","date":"November 21, 2023","format":false,"excerpt":"Security Vulnerability - Vicidial SVN 3754 There is a new security vulnerability in ViciDial for SVN versions 3754 and below. These are labeled as severe and need to be addressed immediately if you are below SVN 3755. You can do so by following this article: How to \u2013 Update your\u2026","rel":"","context":"In "Vicidial"","block_context":{"text":"Vicidial","link":"https:\/\/dialer.one\/index.php\/category\/vicidial\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2023\/11\/Screenshot_20231121-0757582.png?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":2703,"url":"https:\/\/dialer.one\/index.php\/how-to-enable-and-use-password-encryption-in-vicidial\/","url_meta":{"origin":4189,"position":4},"title":"How to – enable and use password encryption in ViciDial","author":"carpenox","date":"September 6, 2022","format":false,"excerpt":"\u00a0This article is going to go over how to enable and use password encryption in ViciDial. By default passwords are displayed in plain text in the ViciDial Admin GUI, this will show you how to encrypt those.","rel":"","context":"In "Vicidial"","block_context":{"text":"Vicidial","link":"https:\/\/dialer.one\/index.php\/category\/vicidial\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/09\/image-4.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/09\/image-4.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2022\/09\/image-4.png?resize=525%2C300&ssl=1 1.5x"},"classes":[]},{"id":5150,"url":"https:\/\/dialer.one\/index.php\/how-to-install-vicidial-on-alma-linux-10\/","url_meta":{"origin":4189,"position":5},"title":"How to – Install ViciDial on Alma Linux 10","author":"carpenox","date":"January 29, 2026","format":false,"excerpt":"How to - Install ViciDial on Alma Linux 10 How to Install VICIdial on AlmaLinux 10 Using My Updated Auto\u2011Installer VICIdial admins have been waiting for this one. AlmaLinux 10 is here with a modernized kernel, updated libraries, and a cleaner security model \u2014 but it also breaks a lot\u2026","rel":"","context":"Similar post","block_context":{"text":"Similar post","link":""},"img":{"alt_text":"Alma 10","src":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2026\/01\/image.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2026\/01\/image.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/dialer.one\/wp-content\/uploads\/2026\/01\/image.webp?resize=525%2C300&ssl=1 1.5x"},"classes":[]}],"jetpack_likes_enabled":true,"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/posts\/4189","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/comments?post=4189"}],"version-history":[{"count":0,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/posts\/4189\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/media\/4190"}],"wp:attachment":[{"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/media?parent=4189"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/categories?post=4189"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dialer.one\/index.php\/wp-json\/wp\/v2\/tags?post=4189"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}