Debian Asterisk vulnerabilities
185 known vulnerabilities affecting debian/asterisk.
Total CVEs
185
CISA KEV
0
Public exploits
18
Exploited in wild
0
Severity breakdown
CRITICAL17HIGH46MEDIUM93LOW27
Vulnerabilities
Page 1 of 10
CVE-2017-17090P2HIGHCVSS 7.5PoCfixed in asterisk 1:13.18.3~dfsg-1 (bullseye)2017
CVE-2017-17090 [HIGH] CVE-2017-17090: asterisk - An issue was discovered in chan_skinny.c in Asterisk Open Source 13.18.2 and old...
An issue was discovered in chan_skinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chan_skinny (aka SCCP protocol) channel driver is flooded with certain requests, it can cause the asterisk process to use excessive amounts of virtual memory, eventually causing asterisk to
debian
CVE-2006-5444P2MEDIUMCVSS 7.5PoCfixed in asterisk 1:1.2.13~dfsg-1 (bullseye)2006
CVE-2006-5444 [HIGH] CVE-2006-5444: asterisk - Integer overflow in the get_input function in the Skinny channel driver (chan_sk...
Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain dlen value that passes a signed integer comparison and leads to a heap-based buffer overflow.
Scope: local
bullseye: resolved (fix
debian
CVE-2023-49294P2MEDIUMCVSS 4.9PoCfixed in asterisk 1:16.28.0~dfsg-0+deb11u4 (bullseye)2023
CVE-2023-49294 [MEDIUM] CVE-2023-49294: asterisk - Asterisk is an open source private branch exchange and telephony toolkit. In Ast...
Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1, as well as certified-asterisk prior to 18.9-cert6, it is possible to read any arbitrary file even when the `live_dangerously` is not enabled. This allows arbitrary files to be read. Asterisk versions 18.20.1, 20.5.1, and 21.0.1, as
debian
CVE-2018-7284P2HIGHCVSS 7.5PoCfixed in asterisk 1:13.20.0~dfsg-1 (bullseye)2018
CVE-2018-7284 [HIGH] CVE-2018-7284: asterisk - A Buffer Overflow issue was discovered in Asterisk through 13.19.1, 14.x through...
A Buffer Overflow issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. When processing a SUBSCRIBE request, the res_pjsip_pubsub module stores the accepted formats present in the Accept headers of the request. This code did not limit the number of headers it processed, despite havi
debian
CVE-2024-42365P2HIGHCVSS 7.4PoCfixed in asterisk 1:16.28.0~dfsg-0+deb11u5 (bullseye)2024
CVE-2024-42365 [HIGH] CVE-2024-42365: asterisk - Asterisk is an open source private branch exchange (PBX) and telephony toolkit. ...
Asterisk is an open source private branch exchange (PBX) and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an AMI user with `write=originate` may change all configuration files in the `/etc/asterisk/` directory. This occurs because they are able to curl remote files and write th
debian
CVE-2018-7286P3MEDIUMCVSS 6.5PoCfixed in asterisk 1:13.20.0~dfsg-1 (bullseye)2018
CVE-2018-7286 [MEDIUM] CVE-2018-7286: asterisk - An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15...
An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. res_pjsip allows remote authenticated users to crash Asterisk (segmentation fault) by sending a number of SIP INVITE messages on a TCP or TLS connection and then suddenly closing the connection.
Scope: local
bullseye: resolv
debian
CVE-2007-2293P3HIGHCVSS 7.6PoCfixed in asterisk 1:1.4.3~dfsg-1 (bullseye)2007
CVE-2007-2293 [HIGH] CVE-2007-2293: asterisk - Multiple stack-based buffer overflows in the process_sdp function in chan_sip.c ...
Multiple stack-based buffer overflows in the process_sdp function in chan_sip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long (1) T38FaxRateManagement or (2) T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP INVITE.
Scope: local
bullseye: resolved (fixed in 1:1.4.3~dfsg-1)
debian
CVE-2011-3389P3MEDIUMCVSS 4.3PoCfixed in asterisk 1:13.7.2~dfsg-1 (bullseye)2011
CVE-2011-3389 [MEDIUM] CVE-2011-3389: asterisk - The SSL protocol, as used in certain configurations in Microsoft Windows and Mic...
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS s
debian
CVE-2012-1184P3HIGHCVSS 7.5PoCfixed in asterisk 1:1.8.10.0~dfsg-1 (bullseye)2012
CVE-2012-1184 [HIGH] CVE-2012-1184: asterisk - Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in ...
Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in an HTTP Digest Authentication header.
Scope: local
bullseye: resolved (fixed in 1:1.8.10.0~dfsg-1)
sid: resolved (fixe
debian
CVE-2008-3263P3HIGHCVSS 7.8PoCfixed in asterisk 1:1.4.21.2~dfsg-1 (bullseye)2008
CVE-2008-3263 [HIGH] CVE-2008-3263: asterisk - The IAX2 protocol implementation in Asterisk Open Source 1.0.x, 1.2.x before 1.2...
The IAX2 protocol implementation in Asterisk Open Source 1.0.x, 1.2.x before 1.2.30, and 1.4.x before 1.4.21.2; Business Edition A.x.x, B.x.x before B.2.5.4, and C.x.x before C.1.10.3; AsteriskNOW; Appliance Developer Kit 0.x.x; and s800i 1.0.x before 1.2.0.1 allows remote attackers to cause a denial of service (call-number exhaustion and CPU consumption) by quickly
debian
CVE-2019-18610P2HIGHCVSS 8.8fixed in asterisk 1:16.10.0~dfsg-1 (bullseye)2019
CVE-2019-18610 [HIGH] CVE-2019-18610: asterisk - An issue was discovered in manager.c in Sangoma Asterisk through 13.x, 16.x, 17....
An issue was discovered in manager.c in Sangoma Asterisk through 13.x, 16.x, 17.x and Certified Asterisk 13.21 through 13.21-cert4. A remote authenticated Asterisk Manager Interface (AMI) user without system authorization could use a specially crafted Originate AMI request to execute arbitrary system commands.
Scope: local
bullseye: resolved (fixed in 1:16.10.0~dfs
debian
CVE-2017-17850P3HIGHCVSS 7.5fixed in asterisk 1:13.18.5~dfsg-1 (bullseye)2017
CVE-2017-17850 [HIGH] CVE-2017-17850: asterisk - An issue was discovered in Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 ...
An issue was discovered in Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18-cert1 and older. A select set of SIP messages create a dialog in Asterisk. Those SIP messages must contain a contact header. For those messages, if the header was not present and the PJSIP channel driver was used, Asterisk would crash. The severity of this vulnerabi
debian
CVE-2008-1289P3MEDIUMCVSS 7.5PoCfixed in asterisk 1:1.4.18.1~dfsg-1 (bullseye)2008
CVE-2008-1289 [HIGH] CVE-2008-1289: asterisk - Multiple buffer overflows in Asterisk Open Source 1.4.x before 1.4.18.1 and 1.4....
Multiple buffer overflows in Asterisk Open Source 1.4.x before 1.4.18.1 and 1.4.19-rc3, Open Source 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6.1, AsteriskNOW 1.0.x before 1.0.2, Appliance Developer Kit before 1.4 revision 109386, and s800i 1.1.x before 1.1.0.2 allow remote attackers to (1) write a zero to an arbitrary memory location via a large RT
debian
CVE-2018-17281P3HIGHCVSS 7.5fixed in asterisk 1:13.23.1~dfsg-1 (bullseye)2018
CVE-2018-17281 [HIGH] CVE-2018-17281: asterisk - There is a stack consumption vulnerability in the res_http_websocket.so module o...
There is a stack consumption vulnerability in the res_http_websocket.so module of Asterisk through 13.23.0, 14.7.x through 14.7.7, and 15.x through 15.6.0 and Certified Asterisk through 13.21-cert2. It allows an attacker to crash Asterisk via a specially crafted HTTP request to upgrade the connection to a websocket.
Scope: local
bullseye: resolved (fixed in 1:13.23
debian
CVE-2007-1306P3MEDIUMCVSS 7.8PoCfixed in asterisk 1:1.2.16~dfsg-1 (bullseye)2007
CVE-2007-1306 [HIGH] CVE-2007-1306: asterisk - Asterisk 1.4 before 1.4.1 and 1.2 before 1.2.16 allows remote attackers to cause...
Asterisk 1.4 before 1.4.1 and 1.2 before 1.2.16 allows remote attackers to cause a denial of service (crash) by sending a Session Initiation Protocol (SIP) packet without a URI and SIP-version header, which results in a NULL pointer dereference.
Scope: local
bullseye: resolved (fixed in 1:1.2.16~dfsg-1)
sid: resolved (fixed in 1:1.2.16~dfsg-1)
debian
CVE-2021-37706P2HIGHCVSS 7.3fixed in asterisk 1:16.28.0~dfsg-0+deb11u1 (bullseye)2021
CVE-2021-37706 [HIGH] CVE-2021-37706: asterisk - PJSIP is a free and open source multimedia communication library written in C la...
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In affected versions if the incoming STUN message contains an ERROR-CODE attribute, the header length is not checked before performing a subtraction operation, potentially resulting in an integer un
debian
CVE-2017-14100P2CRITICALCVSS 9.8fixed in asterisk 1:13.17.1~dfsg-1 (bullseye)2017
CVE-2017-14100 [CRITICAL] CVE-2017-14100: asterisk - In Asterisk 11.x before 11.25.2, 13.x before 13.17.1, and 14.x before 14.6.1 and...
In Asterisk 11.x before 11.25.2, 13.x before 13.17.1, and 14.x before 14.6.1 and Certified Asterisk 11.x before 11.6-cert17 and 13.x before 13.13-cert5, unauthorized command execution is possible. The app_minivm module has an "externnotify" program configuration option that is executed by the MinivmNotify dialplan application. The application uses the caller-id
debian
CVE-2022-26651P2CRITICALCVSS 9.8fixed in asterisk 1:16.28.0~dfsg-0+deb11u1 (bullseye)2022
CVE-2022-26651 [CRITICAL] CVE-2022-26651: asterisk - An issue was discovered in Asterisk through 19.x and Certified Asterisk through ...
An issue was discovered in Asterisk through 19.x and Certified Asterisk through 16.8-cert13. The func_odbc module provides possibly inadequate escaping functionality for backslash characters in SQL queries, resulting in user-provided data creating a broken SQL query or possibly a SQL injection. This is fixed in 16.25.2, 18.11.2, and 19.3.2, and 16.8-cert14.
Sco
debian
CVE-2026-23741P2UNKNOWNCVSS 8.8fixed in asterisk 1:16.28.0~dfsg-0+deb11u9 (bullseye)2026
CVE-2026-23741 [NONE] CVE-2026-23741: asterisk - Asterisk is an open source private branch exchange and telephony toolkit. Prior ...
Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, the asterisk/contrib/scripts/ast_coredumper runs as root, as noted by the NOTES tag on line 689 of the ast_coredumper file. The script will source the contents of /etc/asterisk/ast_debug_tools.conf, which resides in a folder
debian
CVE-2022-31031P2CRITICALCVSS 9.8fixed in asterisk 1:16.28.0~dfsg-0+deb11u2 (bullseye)2022
CVE-2022-31031 [CRITICAL] CVE-2022-31031: asterisk - PJSIP is a free and open source multimedia communication library written in C la...
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions prior to and including 2.12.1 a stack buffer overflow vulnerability affects PJSIP users that use STUN in their applications, either by: setting a STUN server in their account/media c
debian
1 / 10Next →