ZX Security


TelStrat Engage – Multiple issues

David Robinson found multiple issues in TelStrat Engage, a product used for recording phone calls, typically for training and customer experience purposes. Using the issues identified, unauthenticated access to cleartext passwords in the web application is possible. Multiple attempts to contact TelStrat through various avenues were unsuccessful, at this point in time the issues remain unpatched.

Authored by David Robinson

Published on

Further details can be found in the ZX Security Advisory.