Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asterisk vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2293
Multiple stack-based buffer overflows in the process_sdp function in chan_sip.c of the SIP channel T.38 SDP parser in Asterisk prior to 1.4.3 allow remote malicious users to execute arbitrary code via a long (1) T38FaxRateManagement or (2) T38FaxUdpEC SDP parameter in an SIP mess...
Asterisk Asterisk 1.4.1
Asterisk Asterisk 1.4.2
Asterisk Asterisk 1.4 Beta
2 EDB exploits
NA
CVE-2011-1175
tcptls.c in the TCP/TLS server in Asterisk Open Source 1.6.1.x prior to 1.6.1.23, 1.6.2.x prior to 1.6.2.17.1, and 1.8.x prior to 1.8.3.1 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) by establishing many short TCP sessions...
Digium Asterisk 1.6.1.21
Digium Asterisk 1.6.1.20
Digium Asterisk 1.6.1.1
Digium Asterisk 1.6.1
Digium Asterisk 1.6.1.5
Digium Asterisk 1.6.1.9
Digium Asterisk 1.6.1.10
Digium Asterisk 1.6.1.13
Digium Asterisk 1.6.1.0
Digium Asterisk 1.6.1.16
Digium Asterisk 1.6.1.19
Digium Asterisk 1.6.1.2
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.18
Digium Asterisk 1.6.1.14
Digium Asterisk 1.6.1.22
Digium Asterisk 1.6.1.3
Digium Asterisk 1.6.1.4
Digium Asterisk 1.6.1.8
Digium Asterisk 1.6.1.12
Digium Asterisk 1.6.1.11
Digium Asterisk 1.6.1.6
NA
CVE-2010-1224
main/acl.c in Asterisk Open Source 1.6.0.x prior to 1.6.0.25, 1.6.1.x prior to 1.6.1.17, and 1.6.2.x prior to 1.6.2.5 does not properly enforce remote host access controls when CIDR notation "/0" is used in permit= and deny= configuration rules, which causes an improper...
Digium Asterisk 1.6.0.23
Digium Asterisk 1.6.0.22
Digium Asterisk 1.6.0.18
Digium Asterisk 1.6.0.12
Digium Asterisk 1.6.0.10
Digium Asterisk 1.6.0.9
Digium Asterisk 1.6.0.1
Digium Asterisk 1.6.0
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.11
Digium Asterisk 1.6.1.12
Digium Asterisk 1.6.2.0
Digium Asterisk 1.6.2.1
Digium Asterisk 1.6.2.2
Digium Asterisk 1.6.0.24
Digium Asterisk 1.6.0.14
Digium Asterisk 1.6.0.13
Digium Asterisk 1.6.0.3
Digium Asterisk 1.6.0.2
Digium Asterisk 1.6.1.5
Digium Asterisk 1.6.1.6
Digium Asterisk 1.6.1.10
NA
CVE-2011-1599
manager.c in the Manager Interface in Asterisk Open Source 1.4.x prior to 1.4.40.1, 1.6.1.x prior to 1.6.1.25, 1.6.2.x prior to 1.6.2.17.3, and 1.8.x prior to 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly check for the system privilege, which allows...
Digium Asterisk 1.4.29.1
Digium Asterisk 1.4.19
Digium Asterisk 1.4.31
Digium Asterisk 1.4.20
Digium Asterisk 1.4.21
Digium Asterisk 1.4.11
Digium Asterisk 1.4.15
Digium Asterisk 1.4.28
Digium Asterisk 1.4.30
Digium Asterisk 1.4.2
Digium Asterisk 1.4.20.1
Digium Asterisk 1.4.10
Digium Asterisk 1.4.12.1
Digium Asterisk 1.4.16.2
Digium Asterisk 1.4.18
Digium Asterisk 1.4.25
Digium Asterisk 1.4.26
Digium Asterisk 1.4.26.1
Digium Asterisk 1.4.22
Digium Asterisk 1.4.23
Digium Asterisk 1.4.0
Digium Asterisk 1.4.34
NA
CVE-2011-1507
Asterisk Open Source 1.4.x prior to 1.4.40.1, 1.6.1.x prior to 1.6.1.25, 1.6.2.x prior to 1.6.2.17.3, and 1.8.x prior to 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 do not restrict the number of unauthenticated sessions to certain interfaces, which allows remote ma...
Digium Asterisk 1.4.29.1
Digium Asterisk 1.4.19
Digium Asterisk 1.4.31
Digium Asterisk 1.4.20
Digium Asterisk 1.4.21
Digium Asterisk 1.4.11
Digium Asterisk 1.4.15
Digium Asterisk 1.4.29
Digium Asterisk 1.4.30
Digium Asterisk 1.4.19.2
Digium Asterisk 1.4.1
Digium Asterisk 1.4.0
Digium Asterisk 1.4.10.1
Digium Asterisk 1.4.16
Digium Asterisk 1.4.17
Digium Asterisk 1.4.14
Digium Asterisk 1.4.25.1
Digium Asterisk 1.4.26.3
Digium Asterisk 1.4.22
Digium Asterisk 1.4.27
Digium Asterisk 1.4.23.2
Digium Asterisk 1.4.28
NA
CVE-2014-4047
Asterisk Open Source 1.8.x prior to 1.8.28.1, 11.x prior to 11.10.1, and 12.x prior to 12.3.1 and Certified Asterisk 1.8.15 prior to 1.8.15-cert6 and 11.6 prior to 11.6-cert3 allows remote malicious users to cause a denial of service (connection consumption) via a large number of...
Digium Certified Asterisk 1.8.15
Digium Asterisk 1.8.28.0
Digium Asterisk 1.8.27.0
Digium Asterisk 1.8.0
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.10.0
Digium Asterisk 1.8.11.0
Digium Asterisk 1.8.12
Digium Asterisk 1.8.12.0
Digium Asterisk 1.8.13.0
Digium Asterisk 1.8.14.1
Digium Asterisk 1.8.16.0
Digium Asterisk 1.8.18.0
Digium Asterisk 1.8.2
Digium Asterisk 1.8.2.1
Digium Asterisk 1.8.20.0
Digium Asterisk 1.8.20.1
Digium Asterisk 1.8.22.0
Digium Asterisk 1.8.24.0
Digium Asterisk 1.8.3
Digium Asterisk 1.8.4
Digium Asterisk 1.8.5
NA
CVE-2011-2536
chan_sip.c in the SIP channel driver in Asterisk Open Source 1.4.x prior to 1.4.41.2, 1.6.2.x prior to 1.6.2.18.2, and 1.8.x prior to 1.8.4.4, and Asterisk Business Edition C.3.x before C.3.7.3, disregards the alwaysauthreject option and generates different responses for invalid ...
Digium Asterisk 1.8.1.2
Digium Asterisk 1.8.1
Digium Asterisk 1.8.0
Digium Asterisk 1.8.3
Digium Asterisk 1.8.4.3
Digium Asterisk 1.8.4
Digium Asterisk 1.8.4.1
Digium Asterisk 1.8.2
Digium Asterisk 1.8.2.4
Digium Asterisk 1.8.4.2
Digium Asterisk 1.8.3.3
Digium Asterisk 1.8.2.2
Digium Asterisk 1.8.2.1
Digium Asterisk 1.8.3.2
Digium Asterisk 1.8.1.1
Digium Asterisk 1.8.2.3
Digium Asterisk 1.8.3.1
Digium Asterisk 1.6.2.5
Digium Asterisk 1.6.2.16.1
Digium Asterisk 1.6.2.0
Digium Asterisk 1.6.2.15
Digium Asterisk 1.6.2.17
5.9
CVSSv3
CVE-2016-2316
chan_sip in Asterisk Open Source 1.8.x, 11.x prior to 11.21.1, 12.x, and 13.x prior to 13.7.1 and Certified Asterisk 1.8.28, 11.6 prior to 11.6-cert12, and 13.1 prior to 13.1-cert3, when the timert1 sip.conf configuration is set to a value greater than 1245, allows remote malicio...
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Digium Asterisk 13.5.0
Digium Asterisk 13.1.0
Digium Asterisk 13.0.1
Digium Asterisk 12.7.1
Digium Asterisk 12.7.0
Digium Asterisk 12.5.0
Digium Asterisk 12.4.0
Digium Asterisk 12.2.0
Digium Asterisk 12.0.0
Digium Asterisk 11.21.0
Digium Asterisk 11.17.0
Digium Asterisk 11.16.0
Digium Asterisk 11.9.0
Digium Asterisk 11.7.0
Digium Asterisk 11.14.0
Digium Asterisk 11.13.0
Digium Asterisk 13.7.0
Digium Asterisk 13.2.0
Digium Asterisk 12.8.1
Digium Asterisk 12.8.0
8.8
CVSSv3
CVE-2017-7617
Remote code execution can occur in Asterisk Open Source 13.x prior to 13.14.1 and 14.x prior to 14.3.1 and Certified Asterisk 13.13 prior to 13.13-cert3 because of a buffer overflow in a CDR user field, related to X-ClientCode in chan_sip, the CDR dialplan function, and the AMI M...
Digium Asterisk 14.3.0
Digium Asterisk 13.10.0
Digium Asterisk 14.0
Digium Asterisk 14.0.0
Digium Asterisk 13.11.0
Digium Asterisk 13.11.1
Digium Asterisk 13.11.2
Digium Asterisk 13.5.0
Digium Asterisk 13.6.0
Digium Asterisk 13.7.0
Digium Asterisk 13.0.0
Digium Asterisk 13.0.1
Digium Asterisk 13.0.2
Digium Asterisk 14.0.2
Digium Asterisk 14.01
Digium Asterisk 14.02
Digium Asterisk 14.1
Digium Asterisk 14.1.0
Digium Asterisk 13.13
Digium Asterisk 13.13.0
Digium Asterisk 13.2.0
Digium Asterisk 13.8.0
7.5
CVSSv3
CVE-2017-14098
In the pjsip channel driver (res_pjsip) in Asterisk 13.x prior to 13.17.1 and 14.x prior to 14.6.1, a carefully crafted tel URI in a From, To, or Contact header could cause Asterisk to crash.
Digium Asterisk 13.16.0
Digium Asterisk 13.15.0
Digium Asterisk 13.14.0
Digium Asterisk 13.0.0
Digium Asterisk 13.0.2
Digium Asterisk 13.1.0
Digium Asterisk 13.3.2
Digium Asterisk 13.4.0
Digium Asterisk 13.7.2
Digium Asterisk 13.8.0
Digium Asterisk 13.10.0
Digium Asterisk 13.11.0
Digium Asterisk 13.13
Digium Asterisk 13.14.1
Digium Asterisk 13.1.1
Digium Asterisk 13.2.0
Digium Asterisk 13.2.1
Digium Asterisk 13.3.0
Digium Asterisk 13.8.1
Digium Asterisk 13.8.2
Digium Asterisk 13.9.0
Digium Asterisk 13.9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »