AlphaCom 13.02 - Release Notes: Difference between revisions
From Zenitel Wiki
| Line 27: | Line 27: | ||
'''Action''': Upgrade AlphaCom XE to 13.2.3.16 and board support package bsp_32.4.3.12 | '''Action''': Upgrade AlphaCom XE to 13.2.3.16 and board support package bsp_32.4.3.12 | ||
=== MTN- | ==Bug fixes== | ||
===MTN-4808 Fixed arbitrary file read issue=== | |||
<br /> | |||
<br /> | |||
===MTN-4843 Security Update === | ===MTN-4843 Security Update === | ||
Revision as of 11:38, 15 January 2026
Previous Release - AlphaCom 12.05 - Release Notes
This document provides the release notes for AlphaCom 13.2 with incremental bug fix releases. The release notes for AlphaCom 13.2 describe new features, improvements and issues fixed after AlphaCom 13.1.
Note: For each software version the NVRAM version is listed. If the NVRAM version is different, the AlphaCom InterCom configuration will get default configuration, and then you must do a SendAll from AlphaPro to restore the configuration. All AlphaWeb configuration will be kept.
AlphaCom 13.2.3.16
Release info
Name: alpha-sys_13.2.3.16.apkg
bsp_32.04.3.12.apkg
Description: AlphaSys 13.2.3.16 software only runs on AMC 11 hardware and require use of STIC
NVRAM Version: 13.1
Date: 02.12.2025
Status: General Availability
Security fixes and improvements
MTN-4791 Security Update
Resolved vulnerabilities related to:
- CVE-2025-59814 - Unauthenticated Union based SQL-injection password field
- CVE-2025-59815 - Authenticated Remote Code Execution
- CVE-2025-59816 - Authenticated Union based SQL-injection “Search input” field
- CVE-2025-59819 - Unauthenticated RCE - Billing Administrator
Action: Upgrade AlphaCom XE to 13.2.3.16 and board support package bsp_32.4.3.12
Bug fixes
MTN-4808 Fixed arbitrary file read issue
MTN-4843 Security Update
Resolved vulnerabilities related to:
- CVE-2025-64092 - Unauthenticated SQL-injection – Billing Administrator
Action: Upgrade AlphaCom XE to 13.1.3.16 and board support package bsp_32.4.3.12