Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asterisk certified asterisk vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2019-12827
Buffer overflow in res_pjsip_messaging in Digium Asterisk versions 13.21-cert3, 13.27.0, 15.7.2, 16.4.0 and previous versions allows remote authenticated users to crash Asterisk by sending a specially crafted SIP MESSAGE message.
Digium Certified Asterisk 13.21
Digium Asterisk
356
VMScore
CVE-2016-2232
Asterisk Open Source 1.8.x, 11.x prior to 11.21.1, 12.x, and 13.x prior to 13.7.1 and Certified Asterisk 1.8.28, 11.6 prior to 11.6-cert12, and 13.1 prior to 13.1-cert3 allow remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via...
Digium Asterisk 1.8.3
Digium Asterisk 1.8.8.0
Digium Asterisk 13.1.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.24.1
Digium Asterisk 12.0.0
Digium Asterisk 1.8.2.4
Digium Certified Asterisk 11.6
Digium Certified Asterisk 13.1.0
Digium Asterisk 1.8.20.2
Digium Asterisk 1.8.0
Digium Asterisk 13.7.0
Digium Asterisk 1.8.6.0
Digium Asterisk 12.3.1
Digium Asterisk 1.8.1
Digium Asterisk 11.21.0
Digium Asterisk 1.8.1.2
Digium Asterisk 11.8.0
Digium Asterisk 1.8.7.1
Digium Asterisk 11.0.0
Digium Asterisk 1.8.21.0
Digium Asterisk 12.3.0
356
VMScore
CVE-2014-6610
Asterisk Open Source 11.x prior to 11.12.1 and 12.x prior to 12.5.1 and Certified Asterisk 11.6 prior to 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly han...
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
Digium Asterisk 12.0.0
Digium Asterisk 11.3.0
Digium Asterisk 11.2.0
Digium Asterisk 11.0.0
Digium Asterisk 11.4.0
Digium Asterisk 12.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.11.0
Digium Asterisk 12.1.0
Digium Asterisk 11.9.0
Digium Asterisk 11.7.0
Digium Asterisk 11.12.0
Digium Asterisk 11.6.0
Digium Asterisk 12.4.0
Digium Asterisk 11.10.0
Digium Asterisk 11.8.0
Digium Asterisk 12.2.0
Digium Asterisk 12.5.0
Digium Asterisk 11.1.0
356
VMScore
CVE-2012-3812
Double free vulnerability in apps/app_voicemail.c in Asterisk Open Source 1.8.x prior to 1.8.13.1 and 10.x prior to 10.5.2, Certified Asterisk 1.8.11-certx prior to 1.8.11-cert4, and Asterisk Digiumphones 10.x.x-digiumphones prior to 10.5.2-digiumphones allows remote authenticate...
Digium Asterisk 1.8.3
Digium Asterisk 1.8.8.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.2.4
Digium Asterisk 1.8.0
Digium Asterisk 1.8.6.0
Digium Asteriske 1.8.9.1
Digium Asterisk 1.8.1
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.7.1
Digium Asterisk 1.8.7.0
Digium Asterisk 1.8.13.0
Digium Asteriske 1.8.8.0
Digium Asterisk 1.8.4.3
Digium Asterisk 1.8.4
Digium Asterisk 1.8.9.0
Digium Certified Asterisk 1.8.11
Digium Asterisk 1.8.9.3
Digium Asterisk 1.8.4.4
Digium Asterisk 1.8.5.0
Digium Asterisk 1.8.3.1
Digium Asterisk 1.8.8.1
356
VMScore
CVE-2012-3863
channels/chan_sip.c in Asterisk Open Source 1.8.x prior to 1.8.13.1 and 10.x prior to 10.5.2, Asterisk Business Edition C.3.x before C.3.7.5, Certified Asterisk 1.8.11-certx prior to 1.8.11-cert4, and Asterisk Digiumphones 10.x.x-digiumphones prior to 10.5.2-digiumphones does not...
Digium Asterisk Business Edition C.3.1
Digium Asterisk Business Edition C.3.3
Digium Asterisk Business Edition C.3.7.4
Digium Asterisk 1.8.3
Digium Asterisk 1.8.8.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.2.4
Digium Asterisk 1.8.0
Digium Asterisk 1.8.6.0
Digium Asteriske 1.8.9.1
Digium Asterisk 1.8.1
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.7.1
Digium Asterisk 1.8.7.0
Digium Asterisk 1.8.13.0
Digium Asteriske 1.8.8.0
Digium Asterisk 1.8.4.3
Digium Asterisk 1.8.4
Digium Asterisk 1.8.9.0
Digium Certified Asterisk 1.8.11
Digium Asterisk 1.8.9.3
Digium Asterisk 1.8.4.4
356
VMScore
CVE-2012-2948
chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert prior to 1.8.11-cert2 and Asterisk Open Source 1.8.x prior to 1.8.12.1 and 10.x prior to 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and dae...
Asterisk Certified Asterisk 1.8.11
Asterisk Open Source 1.8.10.0
Asterisk Open Source 1.8.0
Asterisk Open Source 1.8.1
Asterisk Open Source 1.8.9.0
Asterisk Open Source 1.8.8.0
Asterisk Open Source 1.8.11.0
Asterisk Open Source
Asterisk Open Source 1.8.12.0
Asterisk Open Source 1.8.6.0
Asterisk Open Source 1.8.7.0
Asterisk Open Source 1.8.5.0
Asterisk Open Source 1.8.12
Asterisk Open Source 1.8.2
Asterisk Open Source 1.8.3
Asterisk Open Source 1.8.5
Asterisk Open Source 10.2.0
Asterisk Open Source 10.3.0
Asterisk Open Source 10.4.0
Asterisk Open Source 10.3
Asterisk Open Source 10.1.0
Asterisk Open Source 10.0.0
312
VMScore
CVE-2019-13161
An issue exists in Asterisk Open Source up to and including 13.27.0, 14.x and 15.x up to and including 15.7.2, and 16.x up to and including 16.4.0, and Certified Asterisk up to and including 13.21-cert3. A pointer dereference in chan_sip while handling SDP negotiation allows an m...
Digium Certified Asterisk 11.6
Digium Certified Asterisk 1.8.14.0
Digium Certified Asterisk 11.4.0
Digium Certified Asterisk 13.1.0
Digium Certified Asterisk 11.1.0
Digium Certified Asterisk 1.8.0.0
Digium Certified Asterisk 1.8.10.0
Digium Certified Asterisk 1.8.15
Digium Certified Asterisk 1.8.11
Digium Certified Asterisk 1.8.12.0
Digium Certified Asterisk 1.8.3.0
Digium Certified Asterisk 13.8
Digium Certified Asterisk 1.8.8.0
Digium Certified Asterisk 11.3.0
Digium Certified Asterisk 1.8.11.0
Digium Certified Asterisk 1.8.6.0
Digium Certified Asterisk 11.0.0
Digium Certified Asterisk 1.8.28
Digium Certified Asterisk 1.8.7.0
Digium Certified Asterisk 1.8.13.0
Digium Certified Asterisk 1.8.28.0
Digium Certified Asterisk 1.8.1.0
312
VMScore
CVE-2014-2287
channels/chan_sip.c in Asterisk Open Source 1.8.x prior to 1.8.26.1, 11.8.x prior to 11.8.1, and 12.1.x prior to 12.1.1, and Certified Asterisk 1.8.15 prior to 1.8.15-cert5 and 11.6 prior to 11.6-cert2, when chan_sip has a certain configuration, allows remote authenticated users ...
Digium Certified Asterisk 1.8.14.0
Digium Certified Asterisk 1.8.0.0
Digium Certified Asterisk 1.8.10.0
Digium Certified Asterisk 1.8.15
Digium Certified Asterisk 1.8.12.0
Digium Certified Asterisk 1.8.3.0
Digium Certified Asterisk 1.8.8.0
Digium Certified Asterisk 1.8.11.0
Digium Certified Asterisk 1.8.6.0
Digium Certified Asterisk 1.8.7.0
Digium Certified Asterisk 1.8.13.0
Digium Certified Asterisk 1.8.1.0
Digium Certified Asterisk 1.8.9.0
Digium Certified Asterisk 1.8.4.0
Digium Certified Asterisk 11.6
Digium Certified Asterisk 11.6.0
Digium Certified Asterisk 1.8.5.0
Digium Certified Asterisk 1.8.2.0
Digium Asterisk 1.8.3
Digium Asterisk 1.8.8.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.24.1
231
VMScore
CVE-2012-2947
chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert prior to 1.8.11-cert2 and Asterisk Open Source 1.8.x prior to 1.8.12.1 and 10.x prior to 10.4.1, when a certain mohinterpret setting is enabled, allows remote malicious users to cause a denial of service (da...
Debian Debian Linux 6.0
Digium Asterisk 1.8.3
Digium Asterisk 1.8.8.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.2.4
Digium Asterisk 1.8.0
Digium Asterisk 1.8.6.0
Digium Asterisk 1.8.1
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.7.1
Digium Asterisk 1.8.7.0
Digium Asterisk 1.8.4.3
Digium Asterisk 1.8.10.0
Digium Asterisk 1.8.4
Digium Asterisk 1.8.9.0
Digium Asterisk 1.8.9.3
Digium Asterisk 1.8.4.4
Digium Asterisk 1.8.12
Digium Asterisk 1.8.5.0
Digium Asterisk 1.8.3.1
Digium Asterisk 1.8.12.0
Digium Asterisk 1.8.8.1
187
VMScore
CVE-2020-28327
A res_pjsip_session crash exists in Asterisk Open Source 13.x prior to 13.37.1, 16.x prior to 16.14.1, 17.x prior to 17.8.1, and 18.x prior to 18.0.1. and Certified Asterisk prior to 16.8-cert5. Upon receiving a new SIP Invite, Asterisk did not return the created dialog locked or...
Asterisk Open Source
Digium Certified Asterisk 16.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »