Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digium asterisk 12.2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4048
The PJSIP Channel Driver in Asterisk Open Source prior to 12.3.1 allows remote malicious users to cause a denial of service (deadlock) by terminating a subscription request before it is complete, which triggers a SIP transaction timeout.
Digium Asterisk 12.0.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 12.1.1
Digium Asterisk 12.2.0
Digium Asterisk
NA
CVE-2014-4045
The Publish/Subscribe Framework in the PJSIP channel driver in Asterisk Open Source 12.x prior to 12.3.1, when sub_min_expiry is set to zero, allows remote malicious users to cause a denial of service (assertion failure and crash) via an unsubscribe request when not subscribed to...
Digium Asterisk 12.0.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 12.1.1
Digium Asterisk 12.2.0
NA
CVE-2014-6609
The res_pjsip_pubsub module in Asterisk Open Source 12.x prior to 12.5.1 allows remote authenticated users to cause a denial of service (crash) via crafted headers in a SIP SUBSCRIBE request for an event package.
Digium Asterisk 12.0.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 12.4.0
Digium Asterisk 12.2.0
Digium Asterisk 12.5.0
NA
CVE-2015-1558
Asterisk Open Source 12.x prior to 12.8.1 and 13.x prior to 13.1.1, when using the PJSIP channel driver, does not properly reclaim RTP ports, which allows remote authenticated users to cause a denial of service (file descriptor consumption) via an SDP offer containing only incomp...
Digium Asterisk 13.1.0
Digium Asterisk 12.0.0
Digium Asterisk 12.3.1
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 12.7.0
Digium Asterisk 13.2.0
Digium Asterisk 12.4.0
Digium Asterisk 12.1.1
Digium Asterisk 12.2.0
Digium Asterisk 12.8.0
Digium Asterisk 12.5.0
Digium Asterisk 13.0.0
Digium Asterisk 12.8.1
Digium Asterisk 12.3.2
Digium Asterisk 12.6.0
NA
CVE-2014-6610
Asterisk Open Source 11.x prior to 11.12.1 and 12.x prior to 12.5.1 and Certified Asterisk 11.6 prior to 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly han...
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
Digium Asterisk 12.0.0
Digium Asterisk 11.3.0
Digium Asterisk 11.2.0
Digium Asterisk 11.0.0
Digium Asterisk 11.4.0
Digium Asterisk 12.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.11.0
Digium Asterisk 12.1.0
Digium Asterisk 11.9.0
Digium Asterisk 11.7.0
Digium Asterisk 11.12.0
Digium Asterisk 11.6.0
Digium Asterisk 12.4.0
Digium Asterisk 11.10.0
Digium Asterisk 11.8.0
Digium Asterisk 12.2.0
Digium Asterisk 12.5.0
Digium Asterisk 11.1.0
NA
CVE-2014-4046
Asterisk Open Source 11.x prior to 11.10.1 and 12.x prior to 12.3.1 and Certified Asterisk 11.6 prior to 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action.
Digium Asterisk 11.3.0
Digium Asterisk 11.2.0
Digium Asterisk 11.8.0
Digium Asterisk 11.0.0
Digium Asterisk 11.4.0
Digium Asterisk 11.1.1
Digium Asterisk 11.5.0
Digium Asterisk 11.0.2
Digium Asterisk 11.9.0
Digium Asterisk 11.10.0
Digium Asterisk 11.1.0
Digium Asterisk 11.8.1
Digium Asterisk 11.1.2
Digium Asterisk 11.0.1
Digium Asterisk 11.5.1
Digium Asterisk 12.0.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 12.1.1
Digium Asterisk 12.2.0
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
NA
CVE-2014-9374
Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x prior to 11.14.2, 12.x prior to 12.7.2, and 13.x prior to 13.0.2 and Certified Asterisk 11.6 prior to 11.6-cert9 allows remote malicious users to cause a denial of service (...
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
Digium Asterisk 12.0.0
Digium Asterisk 11.14.0
Digium Asterisk 11.3.0
Digium Asterisk 11.2.0
Digium Asterisk 11.0.0
Digium Asterisk 11.4.0
Digium Asterisk 12.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.11.0
Digium Asterisk 12.1.0
Digium Asterisk 12.7.0
Digium Asterisk 11.9.0
Digium Asterisk 12.7.1
Digium Asterisk 13.0.1
Digium Asterisk 11.7.0
Digium Asterisk 11.12.0
Digium Asterisk 11.6.0
Digium Asterisk 12.4.0
Digium Asterisk 11.10.0
Digium Asterisk 11.8.0
NA
CVE-2014-4047
Asterisk Open Source 1.8.x prior to 1.8.28.1, 11.x prior to 11.10.1, and 12.x prior to 12.3.1 and Certified Asterisk 1.8.15 prior to 1.8.15-cert6 and 11.6 prior to 11.6-cert3 allows remote malicious users to cause a denial of service (connection consumption) via a large number of...
Digium Certified Asterisk 1.8.15
Digium Asterisk 1.8.3
Digium Asterisk 1.8.8.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.24.1
Digium Asterisk 1.8.2.4
Digium Asterisk 1.8.20.2
Digium Asterisk 1.8.0
Digium Asterisk 1.8.6.0
Digium Asterisk 1.8.1
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.7.1
Digium Asterisk 1.8.21.0
Digium Asterisk 1.8.28.0
Digium Asterisk 1.8.16.0
Digium Asterisk 1.8.7.0
Digium Asterisk 1.8.13.0
Digium Asterisk 1.8.17.0
Digium Asterisk 1.8.4.3
Digium Asterisk 1.8.19.0
Digium Asterisk 1.8.13.1
Digium Asterisk 1.8.24.0
6.5
CVSSv3
CVE-2016-2232
Asterisk Open Source 1.8.x, 11.x prior to 11.21.1, 12.x, and 13.x prior to 13.7.1 and Certified Asterisk 1.8.28, 11.6 prior to 11.6-cert12, and 13.1 prior to 13.1-cert3 allow remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via...
Digium Asterisk 1.8.3
Digium Asterisk 1.8.8.0
Digium Asterisk 13.1.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.24.1
Digium Asterisk 12.0.0
Digium Asterisk 1.8.2.4
Digium Certified Asterisk 11.6
Digium Certified Asterisk 13.1.0
Digium Asterisk 1.8.20.2
Digium Asterisk 1.8.0
Digium Asterisk 13.7.0
Digium Asterisk 1.8.6.0
Digium Asterisk 12.3.1
Digium Asterisk 1.8.1
Digium Asterisk 11.21.0
Digium Asterisk 1.8.1.2
Digium Asterisk 11.8.0
Digium Asterisk 1.8.7.1
Digium Asterisk 11.0.0
Digium Asterisk 1.8.21.0
Digium Asterisk 12.3.0
NA
CVE-2015-3008
Asterisk Open Source 1.8 prior to 1.8.32.3, 11.x prior to 11.17.1, 12.x prior to 12.8.2, and 13.x prior to 13.3.2 and Certified Asterisk 1.8.28 prior to 1.8.28-cert5, 11.6 prior to 11.6-cert11, and 13.1 prior to 13.1-cert2, when registering a SIP TLS device, does not properly han...
Digium Asterisk 1.8.3
Digium Asterisk 13.1.0
Digium Asterisk 1.8.11.0
Digium Certified Asterisk 1.8.14.0
Digium Asterisk 1.8.24.1
Digium Asterisk 12.0.0
Digium Asterisk 1.8.2.4
Digium Certified Asterisk 11.6
Digium Certified Asterisk 1.8.0.0
Digium Asterisk 1.8.20.2
Digium Asterisk 1.8.0
Digium Certified Asterisk 1.8.10.0
Digium Asterisk 11.3.0
Digium Certified Asterisk 1.8.15
Digium Asterisk 12.3.1
Digium Asterisk 1.8.1
Digium Asterisk 11.2.0
Digium Certified Asterisk 1.8.11
Digium Asterisk 1.8.1.2
Digium Certified Asterisk 1.8.12.0
Digium Certified Asterisk 1.8.3.0
Digium Asterisk 11.8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »