automatic module_metadata_base.json update

jenkins-metasploit · jenkins-metasploit · commit 863487683ea8 · 2025-05-06T17:10:06.000Z
diff --git a/db/modules_metadata_base.json b/db/modules_metadata_base.json
@@ -55787,7 +55787,7 @@
     "author": [
       "dflah_ <dflah@alligatorteam.org>"
     ],
-    "description": "This module attempts to authenticate to an Asterisk Manager service. Please note\n        that by default, Asterisk Call Management (port 5038) only listens locally, but\n        this can be manually configured in file /etc/asterisk/manager.conf by the admin\n        on the victim machine.",
+    "description": "This module attempts to authenticate to an Asterisk Manager service. Please note\n          that by default, Asterisk Call Management (port 5038) only listens locally, but\n          this can be manually configured in file /etc/asterisk/manager.conf by the admin\n          on the victim machine.",
     "references": [
       "URL-http://www.asterisk.org/astdocs/node201.html"
     ],
@@ -55797,14 +55797,22 @@
     "autofilter_ports": [],
     "autofilter_services": [],
     "targets": null,
-    "mod_time": "2017-07-24 06:26:21 +0000",
+    "mod_time": "2025-05-07 00:47:05 +0000",
     "path": "/modules/auxiliary/voip/asterisk_login.rb",
     "is_install_path": true,
     "ref_name": "voip/asterisk_login",
     "check": false,
     "post_auth": true,
     "default_credential": false,
-    "notes": {},
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "SideEffects": [
+        "account-lockouts"
+      ],
+      "Reliability": []
+    },
     "session_types": false,
     "needs_cleanup": false,
     "actions": []
@@ -55819,7 +55827,7 @@
     "author": [
       "fozavci"
     ],
-    "description": "The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager\n        (CDM) 10 does not properly implement access control, which allows remote attackers to\n        modify user information. This module exploits the vulnerability to configure unauthorized\n        call forwarding.",
+    "description": "The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager\n          (CDM) 10 does not properly implement access control, which allows remote attackers to\n          modify user information. This module exploits the vulnerability to configure unauthorized\n          call forwarding.",
     "references": [
       "CVE-2014-3300",
       "BID-68331"
@@ -55843,14 +55851,22 @@
       "https"
     ],
     "targets": null,
-    "mod_time": "2017-07-24 06:26:21 +0000",
+    "mod_time": "2025-05-07 00:47:05 +0000",
     "path": "/modules/auxiliary/voip/cisco_cucdm_call_forward.rb",
     "is_install_path": true,
     "ref_name": "voip/cisco_cucdm_call_forward",
     "check": false,
     "post_auth": false,
     "default_credential": false,
-    "notes": {},
+    "notes": {
+      "Stability": [
+        "service-resource-loss"
+      ],
+      "SideEffects": [
+        "ioc-in-logs"
+      ],
+      "Reliability": []
+    },
     "session_types": false,
     "needs_cleanup": false,
     "actions": [
@@ -55874,7 +55890,7 @@
     "author": [
       "fozavci"
     ],
-    "description": "The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager\n        (CDM), before version 10, doesn't implement access control properly, which allows remote\n        attackers to modify user information. This module exploits the vulnerability to make\n        unauthorized speed dial entity manipulations.",
+    "description": "The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager\n          (CDM), before version 10, doesn't implement access control properly, which allows remote\n          attackers to modify user information. This module exploits the vulnerability to make\n          unauthorized speed dial entity manipulations.",
     "references": [
       "CVE-2014-3300",
       "BID-68331"
@@ -55898,14 +55914,22 @@
       "https"
     ],
     "targets": null,
-    "mod_time": "2017-08-28 20:17:58 +0000",
+    "mod_time": "2025-05-07 00:47:05 +0000",
     "path": "/modules/auxiliary/voip/cisco_cucdm_speed_dials.rb",
     "is_install_path": true,
     "ref_name": "voip/cisco_cucdm_speed_dials",
     "check": false,
     "post_auth": false,
     "default_credential": false,
-    "notes": {},
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "SideEffects": [
+        "ioc-in-logs"
+      ],
+      "Reliability": []
+    },
     "session_types": false,
     "needs_cleanup": false,
     "actions": [
@@ -55945,14 +55969,22 @@
     "autofilter_ports": [],
     "autofilter_services": [],
     "targets": null,
-    "mod_time": "2019-03-05 04:43:37 +0000",
+    "mod_time": "2025-05-07 00:47:05 +0000",
     "path": "/modules/auxiliary/voip/sip_deregister.rb",
     "is_install_path": true,
     "ref_name": "voip/sip_deregister",
     "check": false,
     "post_auth": false,
     "default_credential": false,
-    "notes": {},
+    "notes": {
+      "Stability": [
+        "service-resource-loss"
+      ],
+      "SideEffects": [
+        "ioc-in-logs"
+      ],
+      "Reliability": []
+    },
     "session_types": false,
     "needs_cleanup": false,
     "actions": []
@@ -55976,14 +56008,20 @@
     "autofilter_ports": [],
     "autofilter_services": [],
     "targets": null,
-    "mod_time": "2024-01-07 15:02:53 +0000",
+    "mod_time": "2025-05-07 00:47:05 +0000",
     "path": "/modules/auxiliary/voip/sip_invite_spoof.rb",
     "is_install_path": true,
     "ref_name": "voip/sip_invite_spoof",
     "check": false,
     "post_auth": false,
     "default_credential": false,
-    "notes": {},
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "SideEffects": [],
+      "Reliability": []
+    },
     "session_types": false,
     "needs_cleanup": false,
     "actions": []
@@ -55999,8 +56037,10 @@
       "Fakhir Karim Reda <karim.fakhir@gmail.com>",
       "zirsalem"
     ],
-    "description": "This module allows an unauthenticated attacker to exercise the\n        \"Lock\" and \"Unlock\" functionality of Telisca IPS Lock for Cisco IP\n        Phones. This module should be run in the VoIP VLAN, and requires\n        knowledge of the target phone's name (for example, SEP002497AB1D4B).\n\n        Set ACTION to either LOCK or UNLOCK. UNLOCK is the default.",
-    "references": [],
+    "description": "This module allows an unauthenticated attacker to exercise the\n          \"Lock\" and \"Unlock\" functionality of Telisca IPS Lock for Cisco IP\n          Phones. This module should be run in the VoIP VLAN, and requires\n          knowledge of the target phone's name (for example, SEP002497AB1D4B).\n\n          Set ACTION to either LOCK or UNLOCK. UNLOCK is the default.",
+    "references": [
+      "URL-https://github.com/rapid7/metasploit-framework/pull/6470"
+    ],
     "platform": "",
     "arch": "",
     "rport": 80,
@@ -56020,14 +56060,22 @@
       "https"
     ],
     "targets": null,
-    "mod_time": "2022-04-21 13:31:55 +0000",
+    "mod_time": "2025-05-07 00:47:05 +0000",
     "path": "/modules/auxiliary/voip/telisca_ips_lock_control.rb",
     "is_install_path": true,
     "ref_name": "voip/telisca_ips_lock_control",
     "check": false,
     "post_auth": false,
     "default_credential": false,
-    "notes": {},
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "SideEffects": [
+        "ioc-in-logs"
+      ],
+      "Reliability": []
+    },
     "session_types": false,
     "needs_cleanup": false,
     "actions": [
