Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asterisk asterisk a vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2293
Multiple stack-based buffer overflows in the process_sdp function in chan_sip.c of the SIP channel T.38 SDP parser in Asterisk prior to 1.4.3 allow remote malicious users to execute arbitrary code via a long (1) T38FaxRateManagement or (2) T38FaxUdpEC SDP parameter in an SIP mess...
Asterisk Asterisk 1.4.1
Asterisk Asterisk 1.4.2
Asterisk Asterisk 1.4 Beta
2 EDB exploits
NA
CVE-2012-2947
chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert prior to 1.8.11-cert2 and Asterisk Open Source 1.8.x prior to 1.8.12.1 and 10.x prior to 10.4.1, when a certain mohinterpret setting is enabled, allows remote malicious users to cause a denial of service (da...
Debian Debian Linux 6.0
Digium Asterisk 1.8.0
Digium Asterisk 1.8.3
Digium Asterisk 1.8.3.1
Digium Asterisk 1.8.3.2
Digium Asterisk 1.8.6.0
Digium Asterisk 1.8.7.0
Digium Asterisk 1.8.9.0
Digium Asterisk 1.8.9.2
Digium Asterisk 1.8.9.3
Digium Asterisk 1.8.10.0
Digium Asterisk 1.8.12.0
Digium Asterisk 1.8.8.0
Digium Asterisk 1.8.9.1
Digium Asterisk 1.8.1
Digium Asterisk 1.8.1.1
Digium Asterisk 1.8.2.3
Digium Asterisk 1.8.4
Digium Asterisk 1.8.5
Digium Asterisk 1.8.7.1
Digium Asterisk 1.8.8.2
Digium Asterisk 1.8.11.1
5.9
CVSSv3
CVE-2016-2316
chan_sip in Asterisk Open Source 1.8.x, 11.x prior to 11.21.1, 12.x, and 13.x prior to 13.7.1 and Certified Asterisk 1.8.28, 11.6 prior to 11.6-cert12, and 13.1 prior to 13.1-cert3, when the timert1 sip.conf configuration is set to a value greater than 1245, allows remote malicio...
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Digium Asterisk 13.5.0
Digium Asterisk 13.1.0
Digium Asterisk 13.0.1
Digium Asterisk 12.7.1
Digium Asterisk 12.7.0
Digium Asterisk 12.5.0
Digium Asterisk 12.4.0
Digium Asterisk 12.2.0
Digium Asterisk 12.0.0
Digium Asterisk 11.21.0
Digium Asterisk 11.17.0
Digium Asterisk 11.16.0
Digium Asterisk 11.9.0
Digium Asterisk 11.7.0
Digium Asterisk 11.14.0
Digium Asterisk 11.13.0
Digium Asterisk 13.7.0
Digium Asterisk 13.2.0
Digium Asterisk 12.8.1
Digium Asterisk 12.8.0
NA
CVE-2006-1827
Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and previous versions allows remote malicious users to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.
Digium Asterisk 0.1.10
Digium Asterisk 0.1.11
Digium Asterisk 0.1.12
Digium Asterisk 0.1.8
Digium Asterisk 0.1.9
Digium Asterisk 0.4.0
Digium Asterisk 0.5.0
Digium Asterisk 1.0.3
Digium Asterisk 1.0.4
Digium Asterisk 1.0.5
Digium Asterisk 1.2.0 Beta1
Digium Asterisk
Digium Asterisk 0.1.0
Digium Asterisk 0.1.1
Digium Asterisk 0.1.6
Digium Asterisk 0.1.7
Digium Asterisk 0.3.0
Digium Asterisk 0.4
Digium Asterisk 1.0.1
Digium Asterisk 1.0.2
Digium Asterisk 1.0 Rc1
Digium Asterisk 1.0 Rc2
NA
CVE-2009-4055
rtp.c in Asterisk Open Source 1.2.x prior to 1.2.37, 1.4.x prior to 1.4.27.1, 1.6.0.x prior to 1.6.0.19, and 1.6.1.x prior to 1.6.1.11; Business Edition B.x.x before B.2.5.13, C.2.x.x before C.2.4.6, and C.3.x.x before C.3.2.3; and s800i 1.3.x prior to 1.3.0.6 allows remote malic...
Digium Asterisk 1.2.0
Digium Asterisk 1.2.1
Digium Asterisk 1.2.12.1
Digium Asterisk 1.2.16
Digium Asterisk 1.2.17
Digium Asterisk 1.2.20
Digium Asterisk 1.2.23
Digium Asterisk 1.2.26.1
Digium Asterisk 1.2.26.2
Digium Asterisk 1.2.3
Digium Asterisk 1.2.30
Digium Asterisk 1.2.32
Digium Asterisk 1.2.33
Digium Asterisk 1.4.10
Digium Asterisk 1.4.10.1
Digium Asterisk 1.4.11
Digium Asterisk 1.4.16.1
Digium Asterisk 1.4.16.2
Digium Asterisk 1.4.19
Digium Asterisk 1.4.19.1
Digium Asterisk 1.4.21
Digium Asterisk 1.4.22
NA
CVE-2011-2536
chan_sip.c in the SIP channel driver in Asterisk Open Source 1.4.x prior to 1.4.41.2, 1.6.2.x prior to 1.6.2.18.2, and 1.8.x prior to 1.8.4.4, and Asterisk Business Edition C.3.x before C.3.7.3, disregards the alwaysauthreject option and generates different responses for invalid ...
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.1
Digium Asterisk 1.8.0
Digium Asterisk 1.8.3
Digium Asterisk 1.8.4.3
Digium Asterisk 1.8.4
Digium Asterisk 1.8.4.1
Digium Asterisk 1.8.2
Digium Asterisk 1.8.2.4
Digium Asterisk 1.8.4.2
Digium Asterisk 1.8.3.3
Digium Asterisk 1.8.2.2
Digium Asterisk 1.8.2.1
Digium Asterisk 1.8.3.2
Digium Asterisk 1.8.1.1
Digium Asterisk 1.8.2.3
Digium Asterisk 1.8.3.1
Digium Asterisk 1.6.2.5
Digium Asterisk 1.6.2.16.1
Digium Asterisk 1.6.2.0
Digium Asterisk 1.6.2.15
Digium Asterisk 1.6.2.17
NA
CVE-2005-3559
Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 up to and including 1.2.0-beta1 allows remote malicious users to access WAV files via a .. (dot dot) in the folder parameter.
Digium Asterisk 0.1.1
Digium Asterisk 0.1.10
Digium Asterisk 0.1.11
Digium Asterisk 0.1.7
Digium Asterisk 0.1.8
Digium Asterisk 0.7.1
Digium Asterisk 0.7.2
Digium Asterisk 1.0.6
Digium Asterisk 1.0.7
Digium Asterisk 1.0.8
Digium Asterisk 0.1.0
Digium Asterisk 0.1.5
Digium Asterisk 0.1.6
Digium Asterisk 0.5.0
Digium Asterisk 0.7.0
Digium Asterisk 1.0.4
Digium Asterisk 1.0.5
Digium Asterisk 0.1.12
Digium Asterisk 0.1.2
Digium Asterisk 0.1.9
Digium Asterisk 0.2.0
Digium Asterisk 1.0.0
1 EDB exploit
NA
CVE-2011-1599
manager.c in the Manager Interface in Asterisk Open Source 1.4.x prior to 1.4.40.1, 1.6.1.x prior to 1.6.1.25, 1.6.2.x prior to 1.6.2.17.3, and 1.8.x prior to 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly check for the system privilege, which allows...
Digium Asterisk 1.4.29.1
Digium Asterisk 1.4.19
Digium Asterisk 1.4.31
Digium Asterisk 1.4.20
Digium Asterisk 1.4.21
Digium Asterisk 1.4.11
Digium Asterisk 1.4.15
Digium Asterisk 1.4.28
Digium Asterisk 1.4.30
Digium Asterisk 1.4.2
Digium Asterisk 1.4.20.1
Digium Asterisk 1.4.10
Digium Asterisk 1.4.12.1
Digium Asterisk 1.4.16.2
Digium Asterisk 1.4.18
Digium Asterisk 1.4.25
Digium Asterisk 1.4.26
Digium Asterisk 1.4.26.1
Digium Asterisk 1.4.22
Digium Asterisk 1.4.23
Digium Asterisk 1.4.0
Digium Asterisk 1.4.34
NA
CVE-2012-3812
Double free vulnerability in apps/app_voicemail.c in Asterisk Open Source 1.8.x prior to 1.8.13.1 and 10.x prior to 10.5.2, Certified Asterisk 1.8.11-certx prior to 1.8.11-cert4, and Asterisk Digiumphones 10.x.x-digiumphones prior to 10.5.2-digiumphones allows remote authenticate...
Digium Asterisk 1.8.0
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.2
Digium Asterisk 1.8.2.4
Digium Asterisk 1.8.3.2
Digium Asterisk 1.8.4
Digium Asterisk 1.8.4.4
Digium Asterisk 1.8.5
Digium Asterisk 1.8.5.0
Digium Asterisk 1.8.7.0
Digium Asterisk 1.8.8.0
Digium Asterisk 1.8.8.1
Digium Asterisk 1.8.9.0
Digium Certified Asterisk 1.8.11
Digium Asterisk 1.8.13.0
Digium Asterisk 1.8.1.1
Digium Asterisk 1.8.1
Digium Asterisk 1.8.3.3
Digium Asterisk 1.8.3
Digium Asterisk 1.8.6.0
Digium Asterisk 1.8.7.1
Digium Asterisk 1.8.8.2
NA
CVE-2011-1147
Multiple stack-based and heap-based buffer overflows in the (1) decode_open_type and (2) udptl_rx_packet functions in main/udptl.c in Asterisk Open Source 1.4.x prior to 1.4.39.2, 1.6.1.x prior to 1.6.1.22, 1.6.2.x prior to 1.6.2.16.2, and 1.8 prior to 1.8.2.4; Business Edition C...
Digium Asterisk 1.4.29
Digium Asterisk 1.4.19
Digium Asterisk 1.4.19.2
Digium Asterisk 1.4.30
Digium Asterisk 1.4.20
Digium Asterisk 1.4.20.1
Digium Asterisk 1.4.0
Digium Asterisk 1.4.10.1
Digium Asterisk 1.4.17
Digium Asterisk 1.4.16.2
Digium Asterisk 1.4.25.1
Digium Asterisk 1.4.25
Digium Asterisk 1.4.26.3
Digium Asterisk 1.4.22
Digium Asterisk 1.4.23.2
Digium Asterisk 1.4.23
Digium Asterisk 1.4.28
Digium Asterisk 1.4.29.1
Digium Asterisk 1.4.21
Digium Asterisk 1.4.21.1
Digium Asterisk 1.4.15
Digium Asterisk 1.4.13
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »