Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
certified asterisk vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2022-26651
An issue exists in Asterisk up to and including 19.x and Certified Asterisk up to and including 16.8-cert13. The func_odbc module provides possibly inadequate escaping functionality for backslash characters in SQL queries, resulting in user-provided data creating a broken SQL que...
Digium Certified Asterisk 16.8
Digium Asterisk
Debian Debian Linux 10.0
Debian Debian Linux 11.0
516
VMScore
CVE-2019-18790
An issue exists in channels/chan_sip.c in Sangoma Asterisk 13.x prior to 13.29.2, 16.x prior to 16.6.2, and 17.x prior to 17.0.1, and Certified Asterisk 13.21 before cert5. A SIP request can be sent to Asterisk that can change a SIP peer's IP address. A REGISTER does not nee...
Digium Certified Asterisk 13.21.0
Digium Asterisk
Debian Debian Linux 8.0
Debian Debian Linux 9.0
445
VMScore
CVE-2014-9374
Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x prior to 11.14.2, 12.x prior to 12.7.2, and 13.x prior to 13.0.2 and Certified Asterisk 11.6 prior to 11.6-cert9 allows remote malicious users to cause a denial of service (...
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
Digium Asterisk 12.7.0
Digium Asterisk 12.4.0
Digium Asterisk 13.0.0
Digium Asterisk 12.7.1
Digium Asterisk 12.5.0
Digium Asterisk 12.2.0
Digium Asterisk 12.1.0
Digium Asterisk 11.14.0
Digium Asterisk 11.13.0
Digium Asterisk 11.10.0
Digium Asterisk 11.9.0
Digium Asterisk 11.8.0
Digium Asterisk 11.7.0
Digium Asterisk 11.5.0
Digium Asterisk 11.4.0
Digium Asterisk 11.2.0
Digium Asterisk 11.0.0
Digium Asterisk 12.3.0
Digium Asterisk 11.12.0
Digium Asterisk 11.6.0
445
VMScore
CVE-2013-7100
Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x prior to 1.8.24.1, 10.x prior to 10.12.4, and 11.x prior to 11.6.1; Asterisk with Digiumphones 10.x-digiumphones prior to 10.12.4-digiumphones; and Certified Asterisk 1.8.x prior to 1.8.15...
Digium Asterisk Digiumphones 10.11.0
Digium Asterisk Digiumphones 10.12.0
Digium Asterisk 10.12.0
Digium Asterisk 10.10.0
Digium Certified Asterisk 11.2.0
Digium Certified Asterisk 1.8.15
Digium Asterisk 11.4.0
Digium Asterisk 11.0.0
Digium Asterisk 11.1.1
Digium Asterisk 11.1.2
Digium Asterisk 1.8.20.0
Digium Asterisk 1.8.21.0
Digium Asterisk 1.8.17.0
Digium Asterisk 1.8.18.0
Digium Asterisk Digiumphones 10.0.0
Digium Asterisk Digiumphones 10.12.1
Digium Asterisk Digiumphones 10.12.2
Digium Asterisk 10.11.0
Digium Asterisk 11.2.0
Digium Asterisk 11.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.5.1
445
VMScore
CVE-2013-5642
The SIP channel driver (channels/chan_sip.c) in Asterisk Open Source 1.8.x prior to 1.8.23.1, 10.x prior to 10.12.3, and 11.x prior to 11.5.1; Certified Asterisk 1.8.15 prior to 1.8.15-cert3 and 11.2 prior to 11.2-cert2; and Asterisk Digiumphones 10.x-digiumphones prior to 10.12....
Digium Asterisk Digiumphones 10.11.0
Digium Asterisk Digiumphones 10.12.0
Digium Asterisk 10.12.0
Digium Asterisk Digiumphones 10.0.0
Digium Asterisk Digiumphones 10.12.1
Digium Asterisk Digiumphones 10.12.2
Digium Asterisk 10.11.0
Digium Certified Asterisk 11.2.0
Digium Certified Asterisk 1.8.15
Digium Asterisk 11.2.0
Digium Asterisk 11.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.0.2
Digium Asterisk 11.1.0
Digium Asterisk 1.8.23.0
Digium Asterisk 1.8.22.0
Digium Asterisk 1.8.19.0
Digium Asterisk 10.12.2
Digium Asterisk 10.12.1
Digium Asterisk 10.10.0
Digium Asterisk 11.4.0
Digium Asterisk 11.5.1
445
VMScore
CVE-2016-7551
chain_sip in Asterisk Open Source 11.x prior to 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 prior to 11.6-cert15 and 13.8 prior to 13.8-cert3 allows remote malicious users to cause a denial of service (port exhaustion).
Digium Asterisk 11.0.0
Digium Asterisk 11.0.1
Digium Asterisk 11.0.2
Digium Asterisk 11.1.0
Digium Asterisk 11.6.0
Digium Asterisk 11.6.1
Digium Asterisk 11.7.0
Digium Asterisk 11.8.0
Digium Asterisk 11.15.0
Digium Asterisk 11.15.1
Digium Asterisk 11.16.0
Digium Asterisk 11.17.0
Digium Asterisk 13.0.0
Digium Asterisk 13.0.1
Digium Asterisk 13.7.2
Digium Asterisk 13.8.0
Digium Asterisk 13.8.1
Digium Asterisk 11.1.1
Digium Asterisk 11.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.9.0
Digium Asterisk 11.10.1
356
VMScore
CVE-2016-2232
Asterisk Open Source 1.8.x, 11.x prior to 11.21.1, 12.x, and 13.x prior to 13.7.1 and Certified Asterisk 1.8.28, 11.6 prior to 11.6-cert12, and 13.1 prior to 13.1-cert3 allow remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via...
Digium Asterisk 13.7.0
Digium Asterisk 13.4.0
Digium Asterisk 13.6.0
Digium Asterisk 13.2.0
Digium Asterisk 13.1.0
Digium Asterisk 12.8.0
Digium Asterisk 12.6.0
Digium Asterisk 12.5.0
Digium Asterisk 12.3.0
Digium Asterisk 12.2.0
Digium Asterisk 12.1.0
Digium Asterisk 11.19.0
Digium Asterisk 11.18.0
Digium Asterisk 11.9.0
Digium Asterisk 11.8.0
Digium Asterisk 11.7.0
Digium Asterisk 11.2.0
Digium Asterisk 11.14.0
Digium Asterisk 11.11.0
Digium Asterisk 11.10.1
Digium Asterisk 11.1.0
Digium Asterisk 11.0.0
632
VMScore
CVE-2016-2316
chan_sip in Asterisk Open Source 1.8.x, 11.x prior to 11.21.1, 12.x, and 13.x prior to 13.7.1 and Certified Asterisk 1.8.28, 11.6 prior to 11.6-cert12, and 13.1 prior to 13.1-cert3, when the timert1 sip.conf configuration is set to a value greater than 1245, allows remote malicio...
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Digium Asterisk 13.5.0
Digium Asterisk 13.1.0
Digium Asterisk 13.0.1
Digium Asterisk 12.7.1
Digium Asterisk 12.7.0
Digium Asterisk 12.5.0
Digium Asterisk 12.4.0
Digium Asterisk 12.2.0
Digium Asterisk 12.0.0
Digium Asterisk 11.21.0
Digium Asterisk 11.17.0
Digium Asterisk 11.16.0
Digium Asterisk 11.9.0
Digium Asterisk 11.7.0
Digium Asterisk 11.14.0
Digium Asterisk 11.13.0
Digium Asterisk 13.7.0
Digium Asterisk 13.2.0
Digium Asterisk 12.8.1
Digium Asterisk 12.8.0
445
VMScore
CVE-2014-4047
Asterisk Open Source 1.8.x prior to 1.8.28.1, 11.x prior to 11.10.1, and 12.x prior to 12.3.1 and Certified Asterisk 1.8.15 prior to 1.8.15-cert6 and 11.6 prior to 11.6-cert3 allows remote malicious users to cause a denial of service (connection consumption) via a large number of...
Digium Certified Asterisk 1.8.15
Digium Asterisk 1.8.28.0
Digium Asterisk 1.8.27.0
Digium Asterisk 1.8.0
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.10.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.12
Digium Asterisk 1.8.12.0
Digium Asterisk 1.8.13.0
Digium Asterisk 1.8.14.1
Digium Asterisk 1.8.16.0
Digium Asterisk 1.8.18.0
Digium Asterisk 1.8.2
Digium Asterisk 1.8.2.1
Digium Asterisk 1.8.20.0
Digium Asterisk 1.8.20.1
Digium Asterisk 1.8.22.0
Digium Asterisk 1.8.24.0
Digium Asterisk 1.8.3
Digium Asterisk 1.8.4
Digium Asterisk 1.8.5
356
VMScore
CVE-2012-2948
chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert prior to 1.8.11-cert2 and Asterisk Open Source 1.8.x prior to 1.8.12.1 and 10.x prior to 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and dae...
Asterisk Certified Asterisk 1.8.11
Asterisk Open Source
Asterisk Open Source 1.8.12.0
Asterisk Open Source 1.8.10.0
Asterisk Open Source 1.8.9.0
Asterisk Open Source 1.8.8.0
Asterisk Open Source 1.8.7.0
Asterisk Open Source 1.8.6.0
Asterisk Open Source 1.8.2
Asterisk Open Source 1.8.0
Asterisk Open Source 1.8.11.0
Asterisk Open Source 1.8.5
Asterisk Open Source 1.8.3
Asterisk Open Source 1.8.1
Asterisk Open Source 1.8.12
Asterisk Open Source 1.8.5.0
Asterisk Open Source 10.4.0
Asterisk Open Source 10.2.0
Asterisk Open Source 10.0.0
Asterisk Open Source 10.3.0
Asterisk Open Source 10.1.0
Asterisk Open Source 10.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »