Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sandro gauci vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2018-8828
A Buffer Overflow issue exists in Kamailio prior to 4.4.7, 5.0.x prior to 5.0.6, and 5.1.x prior to 5.1.2. A specially crafted REGISTER message with a malformed branch or From tag triggers an off-by-one heap-based buffer overflow in the tmx_check_pretran function in modules/tmx/t...
Kamailio Kamailio
Debian Debian Linux 9.0
Debian Debian Linux 8.0
785
VMScore
CVE-2011-3315
Directory traversal vulnerability in Cisco Unified Communications Manager (CUCM) 5.x and 6.x prior to 6.1(5)SU2, 7.x prior to 7.1(5b)SU2, and 8.x prior to 8.0(3), and Cisco Unified Contact Center Express (aka Unified CCX or UCCX) and Cisco Unified IP Interactive Voice Response (U...
Cisco Unified Ip Interactive Voice Response -
Cisco Unified Ip Ivr 7.0\\(1\\)
Cisco Unified Ip Ivr 7.0\\(2\\)
Cisco Unified Ip Ivr 8.0\\(1\\)
Cisco Unified Ip Ivr 8.5\\(1\\)
Cisco Unified Ip Ivr 6.0\\(1\\)
Cisco Unified Ip Ivr 8.0\\(2\\)
Cisco Unified Communications Manager 6.1\\(3b\\)
Cisco Unified Communications Manager 6.1\\(2\\)
Cisco Unified Communications Manager 6.1\\(2\\)su1a
Cisco Unified Communications Manager 6.1\\(1b\\)
Cisco Unified Communications Manager 6.0
Cisco Unified Communications Manager 6.1\\(5\\)su1
Cisco Unified Communications Manager 7.1\\(3a\\)su1
Cisco Unified Communications Manager 7.1\\(3b\\)
Cisco Unified Communications Manager 7.1\\(3a\\)
Cisco Unified Communications Manager 7.1\\(3\\)
Cisco Unified Communications Manager 7.0\\(2a\\)
Cisco Unified Communications Manager 7.1\\(2a\\)
Cisco Unified Communications Manager 7.1\\(2a\\)su1
Cisco Unified Communications Manager 7.1\\(2b\\)
Cisco Unified Communications Manager 5.1\\(1\\)
1 EDB exploit
465
VMScore
CVE-2000-1112
Microsoft Windows Media Player 7 executes scripts in custom skin (.WMS) files, which could allow remote malicious users to gain privileges via a skin that contains a malicious script, aka the ".WMS Script Execution" vulnerability.
Microsoft Windows Media Player 6.4
Microsoft Windows Media Player 7
1 EDB exploit
445
VMScore
CVE-2021-41105
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. When handling SRTP calls, FreeSWITCH prior to version 1.10.7 is susceptible to a DoS where calls ...
Freeswitch Freeswitch
446
VMScore
CVE-2021-41157
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. By default, SIP requests of the type SUBSCRIBE are not authenticated in the affected versions of ...
Freeswitch Freeswitch
2 Github repositories
445
VMScore
CVE-2021-41158
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.7, an attacker can perform a SIP digest leak attack against FreeSWITCH and ...
Freeswitch Freeswitch
NA
CVE-2023-49786
Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1; as well as certified-asterisk before 18.9-cert6; Asterisk is susceptible to a DoS due to a race condition in the hello handshake phase of the DTLS ...
Sangoma Certified Asterisk 18.9
Sangoma Certified Asterisk 13.13.0
Sangoma Certified Asterisk 16.8.0
Digium Asterisk 21.0.0
Digium Asterisk
NA
CVE-2023-51443
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.11, when handling DTLS-SRTP for media setup, FreeSWITCH is susceptible to D...
Freeswitch Freeswitch
446
VMScore
CVE-2021-37624
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.7, FreeSWITCH does not authenticate SIP MESSAGE requests, leading to spam a...
Freeswitch Freeswitch
2 Github repositories
445
VMScore
CVE-2021-41145
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. FreeSWITCH prior to version 1.10.7 is susceptible to Denial of Service via SIP flooding. When flo...
Freeswitch Freeswitch
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »