Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digium certified asterisk vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2021-26906
An issue exists in res_pjsip_session.c in Digium Asterisk up to and including 13.38.1; 14.x, 15.x, and 16.x up to and including 16.16.0; 17.x up to and including 17.9.1; and 18.x up to and including 18.2.0, and Certified Asterisk up to and including 16.8-cert5. An SDP negotiation...
Digium Asterisk
Digium Certified Asterisk 16.8
578
VMScore
CVE-2017-16671
A Buffer Overflow issue exists in Asterisk Open Source 13 prior to 13.18.1, 14 prior to 14.7.1, and 15 prior to 15.1.1 and Certified Asterisk 13.13 prior to 13.13-cert7. No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to...
Digium Asterisk
Digium Certified Asterisk 13.13.0
383
VMScore
CVE-2017-16672
An issue exists in Asterisk Open Source 13 prior to 13.18.1, 14 prior to 14.7.1, and 15 prior to 15.1.1 and Certified Asterisk 13.13 prior to 13.13-cert7. A memory leak occurs when an Asterisk pjsip session object is created and that call gets rejected before the session itself i...
Digium Asterisk
Digium Certified Asterisk 13.13.0
356
VMScore
CVE-2019-12827
Buffer overflow in res_pjsip_messaging in Digium Asterisk versions 13.21-cert3, 13.27.0, 15.7.2, 16.4.0 and previous versions allows remote authenticated users to crash Asterisk by sending a specially crafted SIP MESSAGE message.
Digium Certified Asterisk 13.21
Digium Asterisk
445
VMScore
CVE-2016-9938
An issue exists in Asterisk Open Source 11.x prior to 11.25.1, 13.x prior to 13.13.1, and 14.x prior to 14.2.1 and Certified Asterisk 11.x prior to 11.6-cert16 and 13.x prior to 13.8-cert4. The chan_sip channel driver has a liberal definition for whitespace when attempting to str...
Digium Asterisk 11.0.0
Digium Asterisk 11.0.1
Digium Asterisk 11.10.0
Digium Asterisk 11.10.1
Digium Asterisk 11.14.1
Digium Asterisk 11.14.2
Digium Asterisk 11.19.0
Digium Asterisk 11.2.0
Digium Asterisk 11.21.1
Digium Asterisk 11.1.0
Digium Asterisk 11.12.0
Digium Asterisk 11.12.1
Digium Asterisk 11.16.0
Digium Asterisk 11.17.0
Digium Asterisk 11.2.1
Digium Asterisk 11.2.2
Digium Asterisk 11.23.0
Digium Asterisk 11.23.1
Digium Asterisk 11.5.1
Digium Asterisk 11.6.0
Digium Asterisk 13.0.0
Digium Asterisk 13.11.0
356
VMScore
CVE-2014-6610
Asterisk Open Source 11.x prior to 11.12.1 and 12.x prior to 12.5.1 and Certified Asterisk 11.6 prior to 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly han...
Digium Certified Asterisk 11.6.0
Digium Certified Asterisk 11.6
Digium Asterisk 12.5.0
Digium Asterisk 12.4.0
Digium Asterisk 12.0.0
Digium Asterisk 11.12.0
Digium Asterisk 11.11.0
Digium Asterisk 11.6.0
Digium Asterisk 11.5.0
Digium Asterisk 11.1.0
Digium Asterisk 11.0.0
Digium Asterisk 12.2.0
Digium Asterisk 11.9.0
Digium Asterisk 11.8.0
Digium Asterisk 11.4.0
Digium Asterisk 11.3.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 11.10.0
Digium Asterisk 11.7.0
Digium Asterisk 11.2.0
445
VMScore
CVE-2013-5641
The SIP channel driver (channels/chan_sip.c) in Asterisk Open Source 1.8.17.x up to and including 1.8.22.x, 1.8.23.x prior to 1.8.23.1, and 11.x prior to 11.5.1 and Certified Asterisk 1.8.15 prior to 1.8.15-cert3 and 11.2 prior to 11.2-cert2 allows remote malicious users to cause...
Digium Certified Asterisk 1.8.15
Digium Asterisk 11.4.0
Digium Asterisk 11.0.0
Digium Asterisk 11.1.0
Digium Asterisk 1.8.20.0
Digium Asterisk 1.8.17.0
Digium Asterisk 1.8.19.0
Digium Asterisk 1.8.19.1
Digium Certified Asterisk 11.2.0
Digium Asterisk 11.5.0
Digium Asterisk 11.0.1
Digium Asterisk 11.2.0
Digium Asterisk 1.8.23.0
Digium Asterisk 1.8.22.0
Digium Asterisk 1.8.18.0
Digium Asterisk 1.8.18.1
Digium Asterisk 11.3.0
Digium Asterisk 11.5.1
Digium Asterisk 11.0.2
Digium Asterisk 11.1.1
Digium Asterisk 11.1.2
Digium Asterisk 1.8.21.0
578
VMScore
CVE-2014-4046
Asterisk Open Source 11.x prior to 11.10.1 and 12.x prior to 12.3.1 and Certified Asterisk 11.6 prior to 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action.
Digium Asterisk 11.9.0
Digium Asterisk 11.0.0
Digium Asterisk 11.1.2
Digium Asterisk 11.2.0
Digium Asterisk 11.4.0
Digium Asterisk 11.5.0
Digium Asterisk 11.8.0
Digium Asterisk 11.8.1
Digium Asterisk 11.0.1
Digium Asterisk 11.3.0
Digium Asterisk 11.1.0
Digium Asterisk 11.1.1
Digium Asterisk 11.10.0
Digium Asterisk 11.0.2
Digium Asterisk 11.5.1
Digium Asterisk 12.2.0
Digium Asterisk 12.0.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 12.1.1
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
405
VMScore
CVE-2018-7286
An issue exists in Asterisk up to and including 13.19.1, 14.x up to and including 14.7.5, and 15.x up to and including 15.2.1, and Certified Asterisk up to and including 13.18-cert2. res_pjsip allows remote authenticated users to crash Asterisk (segmentation fault) by sending a n...
Digium Asterisk
Digium Asterisk 13.19.1
Digium Certified Asterisk
Debian Debian Linux 9.0
1 EDB exploit
445
VMScore
CVE-2014-9374
Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x prior to 11.14.2, 12.x prior to 12.7.2, and 13.x prior to 13.0.2 and Certified Asterisk 11.6 prior to 11.6-cert9 allows remote malicious users to cause a denial of service (...
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
Digium Asterisk 12.7.0
Digium Asterisk 12.4.0
Digium Asterisk 13.0.0
Digium Asterisk 12.7.1
Digium Asterisk 12.5.0
Digium Asterisk 12.2.0
Digium Asterisk 12.1.0
Digium Asterisk 11.14.0
Digium Asterisk 11.13.0
Digium Asterisk 11.10.0
Digium Asterisk 11.9.0
Digium Asterisk 11.8.0
Digium Asterisk 11.7.0
Digium Asterisk 11.5.0
Digium Asterisk 11.4.0
Digium Asterisk 11.2.0
Digium Asterisk 11.0.0
Digium Asterisk 12.3.0
Digium Asterisk 11.12.0
Digium Asterisk 11.6.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
open redirect
CVE-2024-3946
LFI
CVE-2024-25977
CVE-2024-36368
CVE-2024-23109
CVE-2024-23580
CVE-2024-23108
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »