Sangoma Asterisk vulnerabilities
27 known vulnerabilities affecting sangoma/asterisk.
Total CVEs
27
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH8MEDIUM14
Vulnerabilities
Page 2 of 2
CVE-2026-23738P4MEDIUMCVSS 6.1≤ 20.18.2≥ 21.0.0, ≤ 21.12.1+2 more2026-02-06
CVE-2026-23738 [MEDIUM] CWE-79 CVE-2026-23738: Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cer
Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, user supplied/control values for Cookies and any GET variable query Parameter are directly interpolated into the HTML of the page using ast_str_append. The endpoint at GET /httpstatus is the potential vulnerabl
nvd
CVE-2024-42491P4MEDIUMCVSS 5.7fixed in 18.24.3≥ 20.0.0, < 20.9.3+1 more2024-09-05
CVE-2024-42491 [MEDIUM] CWE-252 CVE-2024-42491: Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.24.3, 20.9.3, and 21.
Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.24.3, 20.9.3, and 21.4.3 of Asterisk and versions 18.9-cert12 and 20.7-cert2 of certified-asterisk, if Asterisk attempts to send a SIP request to a URI whose host portion starts with `.1` or `[.1]`, and res_resolver_unbound is loaded, Asterisk will crash with a SEGV. To r
nvd
CVE-2020-28327P4MEDIUMCVSS 5.3≥ 13.0.0, < 13.37.1≥ 16.0.0, < 16.14.1+2 more2020-11-06
CVE-2020-28327 [MEDIUM] CWE-404 CVE-2020-28327: A res_pjsip_session crash was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before 16
A res_pjsip_session crash was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before 16.14.1, 17.x before 17.8.1, and 18.x before 18.0.1. and Certified Asterisk before 16.8-cert5. Upon receiving a new SIP Invite, Asterisk did not return the created dialog locked or referenced. This caused a gap between the creation of the dialog object,
nvdosv
CVE-2024-53566P4MEDIUMCVSS 5.5v22.0.02024-12-02
CVE-2024-53566 [MEDIUM] CWE-22 CVE-2024-53566: An issue in the action_listcategories() function of Sangoma Asterisk v22/22.0.0/22.0.0-rc1/22.0.0-rc
An issue in the action_listcategories() function of Sangoma Asterisk v22/22.0.0/22.0.0-rc1/22.0.0-rc2/22.0.0-pre1 allows attackers to execute a path traversal.
nvdosv
CVE-2024-35190P4MEDIUMCVSS 5.3v18.23.0v20.8.0+1 more2024-05-17
CVE-2024-35190 [MEDIUM] CWE-303 CVE-2024-35190: Asterisk is an open source private branch exchange and telephony toolkit. After upgrade to 18.23.0,
Asterisk is an open source private branch exchange and telephony toolkit. After upgrade to 18.23.0, ALL unauthorized SIP requests are identified as PJSIP Endpoint of local asterisk server. This vulnerability is fixed in 18.23.1, 20.8.1, and 21.3.1.
nvd
CVE-2022-42706P4MEDIUMCVSS 4.9≥ 16.0.0, < 16.29.1≥ 17.0.0, < 18.15.1+2 more2022-12-05
CVE-2022-42706 [MEDIUM] CWE-22 CVE-2022-42706: An issue was discovered in Sangoma Asterisk through 16.28, 17 and 18 through 18.14, 19 through 19.6,
An issue was discovered in Sangoma Asterisk through 16.28, 17 and 18 through 18.14, 19 through 19.6, and certified through 18.9-cert1. GetConfig, via Asterisk Manager Interface, allows a connected application to access files outside of the asterisk configuration directory, aka Directory Traversal.
nvdosv
CVE-2012-2948P4MEDIUMCVSS 4.0≤ 1.8.12.0≤ 10.4.02012-06-02
CVE-2012-2948 [MEDIUM] CWE-399 CVE-2012-2948: chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.1
chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by closing a connection in off-hook mode.
nvdosv
← Previous2 / 2