CVE-2017-17090

🗓️ 02 Dec 2017 00:00:00Reported by mitreType

Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older vulnerability.

Reporter	Title	Published	Views	Family All 31
0day.today	Asterisk 13.17.2 - chan_skinny Remote Memory Corruption Exploit	7 Feb 201800:00	–	zdt
Tenable Nessus	Asterisk 13.x < 13.18.3 / 14.x < 14.7.3 / 15.x < 15.1.3 / 13.13 < 13.13-cert8 Memory Exhaustion Remote DoS (AST-2017-013)	6 Dec 201700:00	–	nessus
Tenable Nessus	Debian DLA-1225-1 : asterisk security update	2 Jan 201800:00	–	nessus
Tenable Nessus	Debian DSA-4076-1 : asterisk - security update	2 Jan 201800:00	–	nessus
Tenable Nessus	Fedora 27 : asterisk (2017-66e9367f7e)	15 Jan 201800:00	–	nessus
Tenable Nessus	FreeBSD : asterisk -- DOS Vulnerability in Asterisk chan_skinny (e91cf90c-d6dd-11e7-9d10-001999f8d30b)	4 Dec 201700:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2017-17090	20 Aug 202500:00	–	nessus
Circl	CVE-2017-17090	7 Feb 201800:00	–	circl
CNVD	Digium Asterisk Open Source and Certified Asterisk 'chan_skinny' Denial of Service Vulnerability	4 Dec 201700:00	–	cnvd
Check Point Advisories	Digium Asterisk chan_skinny SCCP session Denial of Service (CVE-2017-17090)	9 Jan 201800:00	–	checkpoint_advisories

NVD

Node

Node

digium asteriskRange≤13.8.2

Node

digium asteriskRange≤14.7.2

Node

digium asteriskRange≤15.1.2

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2017/12/msg00028.html
downloads	www.downloads.digium.com/pub/security/AST-2017-013.html
debian	www.debian.org/security/2017/dsa-4076
issues	www.issues.asterisk.org/jira/browse/ASTERISK-27452
securityfocus	www.securityfocus.com/bid/102023
securitytracker	www.securitytracker.com/id/1039948
exploit-db	www.exploit-db.com/exploits/43992/

13 May 2026 00:24Current

7.3High risk

Vulners AI Score7.3

CVSS 25

CVSS 37.5

EPSS0.80582