Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digium asterisk 12.2.0 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-4048
The PJSIP Channel Driver in Asterisk Open Source prior to 12.3.1 allows remote malicious users to cause a denial of service (deadlock) by terminating a subscription request before it is complete, which triggers a SIP transaction timeout.
Digium Asterisk 12.2.0
Digium Asterisk 12.0.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk
Digium Asterisk 12.1.1
4.3
CVSSv2
CVE-2014-4045
The Publish/Subscribe Framework in the PJSIP channel driver in Asterisk Open Source 12.x prior to 12.3.1, when sub_min_expiry is set to zero, allows remote malicious users to cause a denial of service (assertion failure and crash) via an unsubscribe request when not subscribed to...
Digium Asterisk 12.2.0
Digium Asterisk 12.0.0
Digium Asterisk 12.1.0
Digium Asterisk 12.1.1
Digium Asterisk 12.3.0
4
CVSSv2
CVE-2014-6609
The res_pjsip_pubsub module in Asterisk Open Source 12.x prior to 12.5.1 allows remote authenticated users to cause a denial of service (crash) via crafted headers in a SIP SUBSCRIBE request for an event package.
Digium Asterisk 12.2.0
Digium Asterisk 12.1.0
Digium Asterisk 12.5.0
Digium Asterisk 12.4.0
Digium Asterisk 12.3.0
Digium Asterisk 12.0.0
3.5
CVSSv2
CVE-2015-1558
Asterisk Open Source 12.x prior to 12.8.1 and 13.x prior to 13.1.1, when using the PJSIP channel driver, does not properly reclaim RTP ports, which allows remote authenticated users to cause a denial of service (file descriptor consumption) via an SDP offer containing only incomp...
Digium Asterisk 12.0.0
Digium Asterisk 12.2.0
Digium Asterisk 12.4.0
Digium Asterisk 12.5.0
Digium Asterisk 12.8.0
Digium Asterisk 13.2.0
Digium Asterisk 12.1.0
Digium Asterisk 12.3.0
Digium Asterisk 12.6.0
Digium Asterisk 12.7.0
Digium Asterisk 13.0.0
Digium Asterisk 13.1.0
Digium Asterisk 12.1.1
Digium Asterisk 12.3.1
Digium Asterisk 12.3.2
Digium Asterisk 12.8.1
4
CVSSv2
CVE-2014-6610
Asterisk Open Source 11.x prior to 11.12.1 and 12.x prior to 12.5.1 and Certified Asterisk 11.6 prior to 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly han...
Digium Certified Asterisk 11.6.0
Digium Certified Asterisk 11.6
Digium Asterisk 12.5.0
Digium Asterisk 12.4.0
Digium Asterisk 12.0.0
Digium Asterisk 11.12.0
Digium Asterisk 11.11.0
Digium Asterisk 11.6.0
Digium Asterisk 11.5.0
Digium Asterisk 11.1.0
Digium Asterisk 11.0.0
Digium Asterisk 12.2.0
Digium Asterisk 11.9.0
Digium Asterisk 11.8.0
Digium Asterisk 11.4.0
Digium Asterisk 11.3.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 11.10.0
Digium Asterisk 11.7.0
Digium Asterisk 11.2.0
6.5
CVSSv2
CVE-2014-4046
Asterisk Open Source 11.x prior to 11.10.1 and 12.x prior to 12.3.1 and Certified Asterisk 11.6 prior to 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action.
Digium Asterisk 11.9.0
Digium Asterisk 11.0.0
Digium Asterisk 11.1.2
Digium Asterisk 11.2.0
Digium Asterisk 11.4.0
Digium Asterisk 11.5.0
Digium Asterisk 11.8.0
Digium Asterisk 11.8.1
Digium Asterisk 11.0.1
Digium Asterisk 11.3.0
Digium Asterisk 11.1.0
Digium Asterisk 11.1.1
Digium Asterisk 11.10.0
Digium Asterisk 11.0.2
Digium Asterisk 11.5.1
Digium Asterisk 12.2.0
Digium Asterisk 12.0.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 12.1.1
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
5
CVSSv2
CVE-2014-9374
Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x prior to 11.14.2, 12.x prior to 12.7.2, and 13.x prior to 13.0.2 and Certified Asterisk 11.6 prior to 11.6-cert9 allows remote malicious users to cause a denial of service (...
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
Digium Asterisk 12.7.0
Digium Asterisk 12.4.0
Digium Asterisk 13.0.0
Digium Asterisk 12.7.1
Digium Asterisk 12.5.0
Digium Asterisk 12.2.0
Digium Asterisk 12.1.0
Digium Asterisk 11.14.0
Digium Asterisk 11.13.0
Digium Asterisk 11.10.0
Digium Asterisk 11.9.0
Digium Asterisk 11.8.0
Digium Asterisk 11.7.0
Digium Asterisk 11.5.0
Digium Asterisk 11.4.0
Digium Asterisk 11.2.0
Digium Asterisk 11.0.0
Digium Asterisk 12.3.0
Digium Asterisk 11.12.0
Digium Asterisk 11.6.0
5
CVSSv2
CVE-2014-4047
Asterisk Open Source 1.8.x prior to 1.8.28.1, 11.x prior to 11.10.1, and 12.x prior to 12.3.1 and Certified Asterisk 1.8.15 prior to 1.8.15-cert6 and 11.6 prior to 11.6-cert3 allows remote malicious users to cause a denial of service (connection consumption) via a large number of...
Digium Certified Asterisk 1.8.15
Digium Asterisk 1.8.28.0
Digium Asterisk 1.8.27.0
Digium Asterisk 1.8.0
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.10.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.12
Digium Asterisk 1.8.12.0
Digium Asterisk 1.8.13.0
Digium Asterisk 1.8.14.1
Digium Asterisk 1.8.16.0
Digium Asterisk 1.8.18.0
Digium Asterisk 1.8.2
Digium Asterisk 1.8.2.1
Digium Asterisk 1.8.20.0
Digium Asterisk 1.8.20.1
Digium Asterisk 1.8.22.0
Digium Asterisk 1.8.24.0
Digium Asterisk 1.8.3
Digium Asterisk 1.8.4
Digium Asterisk 1.8.5
4
CVSSv2
CVE-2016-2232
Asterisk Open Source 1.8.x, 11.x prior to 11.21.1, 12.x, and 13.x prior to 13.7.1 and Certified Asterisk 1.8.28, 11.6 prior to 11.6-cert12, and 13.1 prior to 13.1-cert3 allow remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via...
Digium Asterisk 13.7.0
Digium Asterisk 13.4.0
Digium Asterisk 13.6.0
Digium Asterisk 13.2.0
Digium Asterisk 13.1.0
Digium Asterisk 12.8.0
Digium Asterisk 12.6.0
Digium Asterisk 12.5.0
Digium Asterisk 12.3.0
Digium Asterisk 12.2.0
Digium Asterisk 12.1.0
Digium Asterisk 11.19.0
Digium Asterisk 11.18.0
Digium Asterisk 11.9.0
Digium Asterisk 11.8.0
Digium Asterisk 11.7.0
Digium Asterisk 11.2.0
Digium Asterisk 11.14.0
Digium Asterisk 11.11.0
Digium Asterisk 11.10.1
Digium Asterisk 11.1.0
Digium Asterisk 11.0.0
4.3
CVSSv2
CVE-2015-3008
Asterisk Open Source 1.8 prior to 1.8.32.3, 11.x prior to 11.17.1, 12.x prior to 12.8.2, and 13.x prior to 13.3.2 and Certified Asterisk 1.8.28 prior to 1.8.28-cert5, 11.6 prior to 11.6-cert11, and 13.1 prior to 13.1-cert2, when registering a SIP TLS device, does not properly han...
Digium Asterisk 1.8.0
Digium Asterisk 1.8.1
Digium Asterisk 1.8.1.1
Digium Asterisk 1.8.10.0
Digium Asterisk 1.8.10.1
Digium Asterisk 1.8.11.1
Digium Asterisk 1.8.12
Digium Asterisk 1.8.12.2
Digium Asterisk 1.8.13.0
Digium Asterisk 1.8.14.0
Digium Asterisk 1.8.14.1
Digium Asterisk 1.8.16.0
Digium Asterisk 1.8.17.0
Digium Asterisk 1.8.18.0
Digium Asterisk 1.8.19.0
Digium Asterisk 1.8.19.1
Digium Asterisk 1.8.20.0
Digium Asterisk 1.8.21.0
Digium Asterisk 1.8.22.0
Digium Asterisk 1.8.23.1
Digium Asterisk 1.8.24.0
Digium Asterisk 1.8.26.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »