Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asterisk certified asterisk vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2020-28327
A res_pjsip_session crash exists in Asterisk Open Source 13.x prior to 13.37.1, 16.x prior to 16.14.1, 17.x prior to 17.8.1, and 18.x prior to 18.0.1. and Certified Asterisk prior to 16.8-cert5. Upon receiving a new SIP Invite, Asterisk did not return the created dialog locked or...
Asterisk Open Source
Digium Certified Asterisk 16.8
6.5
CVSSv2
CVE-2014-4046
Asterisk Open Source 11.x prior to 11.10.1 and 12.x prior to 12.3.1 and Certified Asterisk 11.6 prior to 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action.
Digium Asterisk 11.9.0
Digium Asterisk 11.0.0
Digium Asterisk 11.1.2
Digium Asterisk 11.2.0
Digium Asterisk 11.4.0
Digium Asterisk 11.5.0
Digium Asterisk 11.8.0
Digium Asterisk 11.8.1
Digium Asterisk 11.0.1
Digium Asterisk 11.3.0
Digium Asterisk 11.1.0
Digium Asterisk 11.1.1
Digium Asterisk 11.10.0
Digium Asterisk 11.0.2
Digium Asterisk 11.5.1
Digium Asterisk 12.2.0
Digium Asterisk 12.0.0
Digium Asterisk 12.3.0
Digium Asterisk 12.1.0
Digium Asterisk 12.1.1
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
5
CVSSv2
CVE-2013-5641
The SIP channel driver (channels/chan_sip.c) in Asterisk Open Source 1.8.17.x up to and including 1.8.22.x, 1.8.23.x prior to 1.8.23.1, and 11.x prior to 11.5.1 and Certified Asterisk 1.8.15 prior to 1.8.15-cert3 and 11.2 prior to 11.2-cert2 allows remote malicious users to cause...
Digium Certified Asterisk 1.8.15
Digium Asterisk 11.4.0
Digium Asterisk 11.0.0
Digium Asterisk 11.1.0
Digium Asterisk 1.8.20.0
Digium Asterisk 1.8.17.0
Digium Asterisk 1.8.19.0
Digium Asterisk 1.8.19.1
Digium Certified Asterisk 11.2.0
Digium Asterisk 11.5.0
Digium Asterisk 11.0.1
Digium Asterisk 11.2.0
Digium Asterisk 1.8.23.0
Digium Asterisk 1.8.22.0
Digium Asterisk 1.8.18.0
Digium Asterisk 1.8.18.1
Digium Asterisk 11.3.0
Digium Asterisk 11.5.1
Digium Asterisk 11.0.2
Digium Asterisk 11.1.1
Digium Asterisk 11.1.2
Digium Asterisk 1.8.21.0
4
CVSSv2
CVE-2018-7286
An issue exists in Asterisk up to and including 13.19.1, 14.x up to and including 14.7.5, and 15.x up to and including 15.2.1, and Certified Asterisk up to and including 13.18-cert2. res_pjsip allows remote authenticated users to crash Asterisk (segmentation fault) by sending a n...
Digium Asterisk
Digium Asterisk 13.19.1
Digium Certified Asterisk
Debian Debian Linux 9.0
1 EDB exploit
4
CVSSv2
CVE-2020-28242
An issue exists in Asterisk Open Source 13.x prior to 13.37.1, 16.x prior to 16.14.1, 17.x prior to 17.8.1, and 18.x prior to 18.0.1 and Certified Asterisk prior to 16.8-cert5. If Asterisk is challenged on an outbound INVITE and the nonce is changed in each response, Asterisk wil...
Asterisk Open Source
Asterisk Certified Asterisk
Fedoraproject Fedora 33
Debian Debian Linux 9.0
5
CVSSv2
CVE-2014-9374
Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x prior to 11.14.2, 12.x prior to 12.7.2, and 13.x prior to 13.0.2 and Certified Asterisk 11.6 prior to 11.6-cert9 allows remote malicious users to cause a denial of service (...
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
Digium Asterisk 12.7.0
Digium Asterisk 12.4.0
Digium Asterisk 13.0.0
Digium Asterisk 12.7.1
Digium Asterisk 12.5.0
Digium Asterisk 12.2.0
Digium Asterisk 12.1.0
Digium Asterisk 11.14.0
Digium Asterisk 11.13.0
Digium Asterisk 11.10.0
Digium Asterisk 11.9.0
Digium Asterisk 11.8.0
Digium Asterisk 11.7.0
Digium Asterisk 11.5.0
Digium Asterisk 11.4.0
Digium Asterisk 11.2.0
Digium Asterisk 11.0.0
Digium Asterisk 12.3.0
Digium Asterisk 11.12.0
Digium Asterisk 11.6.0
5
CVSSv2
CVE-2013-7100
Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x prior to 1.8.24.1, 10.x prior to 10.12.4, and 11.x prior to 11.6.1; Asterisk with Digiumphones 10.x-digiumphones prior to 10.12.4-digiumphones; and Certified Asterisk 1.8.x prior to 1.8.15...
Digium Asterisk Digiumphones 10.11.0
Digium Asterisk Digiumphones 10.12.0
Digium Asterisk 10.12.0
Digium Asterisk 10.10.0
Digium Certified Asterisk 11.2.0
Digium Certified Asterisk 1.8.15
Digium Asterisk 11.4.0
Digium Asterisk 11.0.0
Digium Asterisk 11.1.1
Digium Asterisk 11.1.2
Digium Asterisk 1.8.20.0
Digium Asterisk 1.8.21.0
Digium Asterisk 1.8.17.0
Digium Asterisk 1.8.18.0
Digium Asterisk Digiumphones 10.0.0
Digium Asterisk Digiumphones 10.12.1
Digium Asterisk Digiumphones 10.12.2
Digium Asterisk 10.11.0
Digium Asterisk 11.2.0
Digium Asterisk 11.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.5.1
5
CVSSv2
CVE-2013-5642
The SIP channel driver (channels/chan_sip.c) in Asterisk Open Source 1.8.x prior to 1.8.23.1, 10.x prior to 10.12.3, and 11.x prior to 11.5.1; Certified Asterisk 1.8.15 prior to 1.8.15-cert3 and 11.2 prior to 11.2-cert2; and Asterisk Digiumphones 10.x-digiumphones prior to 10.12....
Digium Asterisk Digiumphones 10.11.0
Digium Asterisk Digiumphones 10.12.0
Digium Asterisk 10.12.0
Digium Asterisk Digiumphones 10.0.0
Digium Asterisk Digiumphones 10.12.1
Digium Asterisk Digiumphones 10.12.2
Digium Asterisk 10.11.0
Digium Certified Asterisk 11.2.0
Digium Certified Asterisk 1.8.15
Digium Asterisk 11.2.0
Digium Asterisk 11.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.0.2
Digium Asterisk 11.1.0
Digium Asterisk 1.8.23.0
Digium Asterisk 1.8.22.0
Digium Asterisk 1.8.19.0
Digium Asterisk 10.12.2
Digium Asterisk 10.12.1
Digium Asterisk 10.10.0
Digium Asterisk 11.4.0
Digium Asterisk 11.5.1
5
CVSSv2
CVE-2019-18976
An issue exists in res_pjsip_t38.c in Sangoma Asterisk up to and including 13.x and Certified Asterisk up to and including 13.21-x. If it receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a NULL pointer dereference and crash will occur. Thi...
Digium Certified Asterisk 13.21
Digium Asterisk
Debian Debian Linux 9.0
5
CVSSv2
CVE-2016-7551
chain_sip in Asterisk Open Source 11.x prior to 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 prior to 11.6-cert15 and 13.8 prior to 13.8-cert3 allows remote malicious users to cause a denial of service (port exhaustion).
Digium Asterisk 11.0.0
Digium Asterisk 11.0.1
Digium Asterisk 11.0.2
Digium Asterisk 11.1.0
Digium Asterisk 11.6.0
Digium Asterisk 11.6.1
Digium Asterisk 11.7.0
Digium Asterisk 11.8.0
Digium Asterisk 11.15.0
Digium Asterisk 11.15.1
Digium Asterisk 11.16.0
Digium Asterisk 11.17.0
Digium Asterisk 13.0.0
Digium Asterisk 13.0.1
Digium Asterisk 13.7.2
Digium Asterisk 13.8.0
Digium Asterisk 13.8.1
Digium Asterisk 11.1.1
Digium Asterisk 11.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.9.0
Digium Asterisk 11.10.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »