We at Loway prioritize the security and integrity of our products and your data. Today, we are addressing three newly identified medium-grade Common Vulnerabilities and Exposures (CVEs) affecting our product, QueueMetrics.

CVEs Details

Current Status

  • Patched Version Available: We have released a new version of QueueMetrics (24.05.5) that addresses these vulnerabilities. The patched version is now available for download and installation as RPM, TGZ or Docker image.
  • No Active Exploitation: At this time, we are not aware of any instances where these vulnerabilities have been actively exploited in the wild. However, to ensure the security and performance of your systems, we strongly recommend updating to the latest version as soon as possible.

Action Required

  • On-Premise Users: Please update your installation of QueueMetrics to version 24.05.5 immediately. You can download the update from our official website or through your distro’s update mechanism. If you are not confident in updating on your own, we suggest purchasing a Remote Support Pack so that our support team can do it for you.
  • Users of QueueMetrics-Live: The security update was automatically applied to our SaaS environment last week. No action is required on your part.

Additional Security Measures

  • Enable Secure Mode: After updating, we recommend enabling Secure Mode. Secure Mode provides additional security enhancements that can help protect against future vulnerabilities. Instructions for enabling Secure Mode and what it implies can be found on the User Manual.

Support and Further Information

  • If you encounter any issues during the update process or have questions regarding these CVEs, please contact our support team.

We thank you for your prompt attention to this matter and for your continued trust in our products. Ensuring the security of your data and operations is our utmost priority, and we are committed to taking all necessary steps to safeguard your environment.

About QueueMetrics

QueueMetrics is a highly scalable monitoring software that lets you track agent productivity, payrolls, measure targets, conversion rates, queues/ACDs, IVRs, music-on-hold, generate outbound campaign statistics and monitor realtime processes with customizable wallboards.

You can measure all activities in your contact center with more than 200 different metrics and manage realtime processes with live alarms and full control on calls and extensions, including whisper, spy and barge modes.

QueueMetrics is available on premise or as a cloud hosted service, and it is compatible with FreePBX, Grandstream, Issabel, MiRTA, Enswitch, Yeastar S PBX, VitalPBX, FusionPBX and many other Asterisk- and Freeswitch-based systems. It also supports Microsoft Teams telephony.

For more technical information please refer to the User Manual.

Visit www.queuemetrics.com for a free 15-day full-featured trial.

keyboard_arrow_left Back