It is possible to intercept calls made using the VoIP platform because the communication is not encrypted.
Get call information.
Configure the channel with TLS or SRTP and TLS, or configure a firewall to cipher calls.
Attacker authenticated from the Internet.
⌚ 60 minutes.
Default score using CVSS 3.1. It may change depending on the context of the src.
Default score using CVSS 4.0. It may change depending on the context of the src.
Modify resource configuration with tls
port: 8008
tls: true
type: https
x_forwarded: true
bind_addresses: ['::1', '127.0.0.1']
resources:
- names: [client, federation]
compress: false
Insecure resource configuration (No tls)
port: 8008
tls: false
type: http
x_forwarded: true
bind_addresses: ['::1', '127.0.0.1']
resources:
- names: [client, federation]
compress: false