CVE-2026-15472 | Eleveo Call Recording Software 9.7.0 composeEmailAction.do improper authorization
A vulnerability classified as problematic was found in Eleveo Call Recording Software 9.7.0. This vulnerability affects unknown code of the file /callrec/composeEmailAction.do. Executing a manipulation can lead to improper authorization.
This vulnerability is handled as CVE-2026-15472. The attack can be executed remotely. Additionally, an exploit exists.
The vendor was contacted early about this disclosure but did not respond in any way.