cbcvebase.

Digium Asterisk vulnerabilities

114 known vulnerabilities affecting digium/asterisk.

Total CVEs
114
CISA KEV
0
Public exploits
8
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH37MEDIUM67LOW5

Vulnerabilities

Page 1 of 6
CVE-2017-17090P2HIGHCVSS 7.5PoC≤ 13.8.2≤ 14.7.2+1 more2017-12-02
CVE-2017-17090 [HIGH] CWE-459 CVE-2017-17090: An issue was discovered in chan_skinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older An issue was discovered in chan_skinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chan_skinny (aka SCCP protocol) channel driver is flooded with certain requests, it can cause the asterisk process to use excessive amounts of virtual memory, eventually causin
nvdosv
CVE-2006-5444P2HIGHCVSS 7.5PoCv0.1.7v0.1.8+24 more2006-10-23
CVE-2006-5444 [HIGH] CVE-2006-5444: Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain dlen value that passes a signed integer comparison and leads to a heap-based buffer overflow.
nvdosv
CVE-2023-49294P2HIGHCVSS 7.5PoCfixed in 18.20.1≥ 19.0.0, < 20.5.1+1 more2023-12-14
CVE-2023-49294 [HIGH] CWE-22 CVE-2023-49294: Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versi Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1, as well as certified-asterisk prior to 18.9-cert6, it is possible to read any arbitrary file even when the `live_dangerously` is not enabled. This allows arbitrary files to be read. Asterisk versions 18.20.1, 20.5.1, and
nvd
CVE-2018-7284P2HIGHCVSS 7.5PoC≤ 13.19.1≥ 14.0.0, ≤ 14.7.5+1 more2018-02-22
CVE-2018-7284 [HIGH] CWE-119 CVE-2018-7284: A Buffer Overflow issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x th A Buffer Overflow issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. When processing a SUBSCRIBE request, the res_pjsip_pubsub module stores the accepted formats present in the Accept headers of the request. This code did not limit the number of headers it processed
nvdosv
CVE-2018-7286P3MEDIUMCVSS 6.5PoC≥ 14.0.0, ≤ 14.7.5≥ 15.0.0, ≤ 15.2.1+1 more2018-02-22
CVE-2018-7286 [MEDIUM] CVE-2018-7286: An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, a An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. res_pjsip allows remote authenticated users to crash Asterisk (segmentation fault) by sending a number of SIP INVITE messages on a TCP or TLS connection and then suddenly closing the connection.
nvdosv
CVE-2012-1184P3HIGHCVSS 7.5PoCv1.8.0v1.8.1.1+35 more2012-09-18
CVE-2012-1184 [HIGH] CWE-119 CVE-2012-1184: Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in Asterisk 1.8.x befor Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in an HTTP Digest Authentication header.
nvdosv
CVE-2019-18610P2HIGHCVSS 8.8≥ 13.0.0, < 13.29.2≥ 16.0.0, < 16.6.2+1 more2019-11-22
CVE-2019-18610 [HIGH] CWE-862 CVE-2019-18610: An issue was discovered in manager.c in Sangoma Asterisk through 13.x, 16.x, 17.x and Certified Aste An issue was discovered in manager.c in Sangoma Asterisk through 13.x, 16.x, 17.x and Certified Asterisk 13.21 through 13.21-cert4. A remote authenticated Asterisk Manager Interface (AMI) user without system authorization could use a specially crafted Originate AMI request to execute arbitrary system commands.
nvdosv
CVE-2017-17850P3HIGHCVSS 7.5≥ 13.0.0, ≤ 13.18.4≥ 14.0.0, ≤ 14.7.4+1 more2017-12-27
CVE-2017-17850 [HIGH] CWE-20 CVE-2017-17850: An issue was discovered in Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18 An issue was discovered in Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18-cert1 and older. A select set of SIP messages create a dialog in Asterisk. Those SIP messages must contain a contact header. For those messages, if the header was not present and the PJSIP channel driver was used, Asterisk would crash. The severity of t
nvdosv
CVE-2018-17281P3HIGHCVSS 7.5≥ 13.0.0, ≤ 13.23.0≥ 14.0.0, ≤ 14.7.7+1 more2018-09-24
CVE-2018-17281 [HIGH] CWE-400 CVE-2018-17281: There is a stack consumption vulnerability in the res_http_websocket.so module of Asterisk through 1 There is a stack consumption vulnerability in the res_http_websocket.so module of Asterisk through 13.23.0, 14.7.x through 14.7.7, and 15.x through 15.6.0 and Certified Asterisk through 13.21-cert2. It allows an attacker to crash Asterisk via a specially crafted HTTP request to upgrade the connection to a websocket.
nvdosv
CVE-2007-1306P3HIGHCVSS 7.8PoCv1.2.0_beta1v1.2.0_beta2+16 more2007-03-07
CVE-2007-1306 [HIGH] CVE-2007-1306: Asterisk 1.4 before 1.4.1 and 1.2 before 1.2.16 allows remote attackers to cause a denial of service Asterisk 1.4 before 1.4.1 and 1.2 before 1.2.16 allows remote attackers to cause a denial of service (crash) by sending a Session Initiation Protocol (SIP) packet without a URI and SIP-version header, which results in a NULL pointer dereference.
nvdosv
CVE-2017-14100P2CRITICALCVSS 9.8v13.0.0v13.0.1+99 more2017-09-02
CVE-2017-14100 [CRITICAL] CWE-78 CVE-2017-14100: In Asterisk 11.x before 11.25.2, 13.x before 13.17.1, and 14.x before 14.6.1 and Certified Asterisk In Asterisk 11.x before 11.25.2, 13.x before 13.17.1, and 14.x before 14.6.1 and Certified Asterisk 11.x before 11.6-cert17 and 13.x before 13.13-cert5, unauthorized command execution is possible. The app_minivm module has an "externnotify" program configuration option that is executed by the MinivmNotify dialplan application. The application uses t
nvdosv
CVE-2022-26651P2CRITICALCVSS 9.8≥ 16.0.0, < 16.25.2≥ 18.0, < 18.11.2+1 more2022-04-15
CVE-2022-26651 [CRITICAL] CWE-89 CVE-2022-26651: An issue was discovered in Asterisk through 19.x and Certified Asterisk through 16.8-cert13. The fun An issue was discovered in Asterisk through 19.x and Certified Asterisk through 16.8-cert13. The func_odbc module provides possibly inadequate escaping functionality for backslash characters in SQL queries, resulting in user-provided data creating a broken SQL query or possibly a SQL injection. This is fixed in 16.25.2, 18.11.2, and 19.3.2, and 16.
nvdosv
CVE-2017-14098P3HIGHCVSS 7.5v13.0.0v13.0.1+54 more2017-09-02
CVE-2017-14098 [HIGH] CWE-20 CVE-2017-14098: In the pjsip channel driver (res_pjsip) in Asterisk 13.x before 13.17.1 and 14.x before 14.6.1, a ca In the pjsip channel driver (res_pjsip) in Asterisk 13.x before 13.17.1 and 14.x before 14.6.1, a carefully crafted tel URI in a From, To, or Contact header could cause Asterisk to crash.
nvdosv
CVE-2022-26499P3CRITICALCVSS 9.1≥ 16.15.0, ≤ 16.25.1≥ 18.0, < 18.11.2+1 more2022-04-15
CVE-2022-26499 [CRITICAL] CWE-918 CVE-2022-26499: An SSRF issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it's possible to send An SSRF issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it's possible to send arbitrary requests (such as GET) to interfaces such as localhost by using the Identity header. This is fixed in 16.25.2, 18.11.2, and 19.3.2.
nvdosv
CVE-2005-3559P3MEDIUMCVSS 5.0PoCv0.1.0v0.1.1+31 more2005-11-16
CVE-2005-3559 [MEDIUM] CVE-2005-3559: Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 through 1.2.0-beta1 allows remote a Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 through 1.2.0-beta1 allows remote attackers to access WAV files via a .. (dot dot) in the folder parameter.
nvdosv
CVE-2017-7617P3HIGHCVSS 8.8v13.0.0v13.0.1+43 more2017-04-10
CVE-2017-7617 [HIGH] CWE-119 CVE-2017-7617: Remote code execution can occur in Asterisk Open Source 13.x before 13.14.1 and 14.x before 14.3.1 a Remote code execution can occur in Asterisk Open Source 13.x before 13.14.1 and 14.x before 14.3.1 and Certified Asterisk 13.13 before 13.13-cert3 because of a buffer overflow in a CDR user field, related to X-ClientCode in chan_sip, the CDR dialplan function, and the AMI Monitor action.
nvdosv
CVE-2019-15639P3HIGHCVSS 7.5≥ 13.0.0, ≤ 13.28.0≥ 16.0.0, ≤ 16.5.02019-09-09
CVE-2019-15639 [HIGH] CWE-20 CVE-2019-15639: main/translate.c in Sangoma Asterisk 13.28.0 and 16.5.0 allows a remote attacker to send a specific main/translate.c in Sangoma Asterisk 13.28.0 and 16.5.0 allows a remote attacker to send a specific RTP packet during a call and cause a crash in a specific scenario.
nvdosv
CVE-2011-1599P3CRITICALCVSS 9.0v1.4.0v1.4.1+121 more2011-04-27
CVE-2011-1599 [CRITICAL] CWE-20 CVE-2011-1599: manager.c in the Manager Interface in Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6 manager.c in the Manager Interface in Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly check for the system privilege, which allows remote authenticated users to execute arbitrary commands via an Originate actio
nvdosv
CVE-2014-2286P3HIGHCVSS 7.5v1.8.0v1.8.1+61 more2014-04-18
CVE-2014-2286 [HIGH] CWE-20 CVE-2014-2286: main/http.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before 11.8.1, and 12.1.x before 1 main/http.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before 11.8.1, and 12.1.x before 12.1.1, and Certified Asterisk 1.8.x before 1.8.15-cert5 and 11.6 before 11.6-cert2, allows remote attackers to cause a denial of service (stack consumption) and possibly execute arbitrary code via an HTTP request with a large number of Cookie headers.
nvdosv
CVE-2022-26498P3HIGHCVSS 7.5≥ 16.15.0, ≤ 16.25.1≥ 18.0, < 18.11.2+1 more2022-04-15
CVE-2022-26498 [HIGH] CWE-400 CVE-2022-26498: An issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it is possible to download An issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it is possible to download files that are not certificates. These files could be much larger than what one would expect to download, leading to Resource Exhaustion. This is fixed in 16.25.2, 18.11.2, and 19.3.2.
nvdosv
Digium Asterisk vulnerabilities | cvebase