CVE-2025-49832

🗓️ 01 Aug 2025 17:57:29Reported by GitHub_MType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 28 Views

Asterisk vulnerable to remote DoS and possible RCE attacks affecting specific versions, fixed in updates.

Reporter	Title	Published	Views	Family All 22
AlpineLinux	CVE-2025-49832	1 Aug 202517:57	–	alpinelinux
Circl	CVE-2025-49832	31 Jul 202517:52	–	circl
CNNVD	Asterisk 代码问题漏洞	1 Aug 202500:00	–	cnnvd
Cvelist	CVE-2025-49832 Asterisk is Vulnerable to Remote DoS and possible RCE Attacks During Memory Allocation	1 Aug 202517:57	–	cvelist
Debian CVE	CVE-2025-49832	1 Aug 202517:57	–	debiancve
EUVD	EUVD-2025-23381	3 Oct 202520:07	–	euvd
Fedora	[SECURITY] Fedora 42 Update: asterisk-18.26.4-1.fc42	30 Apr 202601:30	–	fedora
Fedora	[SECURITY] Fedora 43 Update: asterisk-18.26.4-1.fc43	30 Apr 202601:21	–	fedora
Fedora	[SECURITY] Fedora 44 Update: asterisk-18.26.4-1.fc44	30 Apr 202600:54	–	fedora
Tenable Nessus	Fedora 44 : asterisk (2026-38d71393c1)	30 Apr 202600:00	–	nessus

NVD

Vulners

Node

sangoma asteriskRange<18.26.3

sangoma asteriskRange20.0.0–20.15.1

sangoma asteriskRange21.0.0–21.10.1

sangoma asteriskRange22.0.0–22.5.1

Node

sangoma certified_asteriskRange≤18.9

sangoma certified_asteriskMatch20.7cert1

sangoma certified_asteriskMatch20.7cert1-rc1

sangoma certified_asteriskMatch20.7cert1-rc2

sangoma certified_asteriskMatch20.7cert2

sangoma certified_asteriskMatch20.7cert3

sangoma certified_asteriskMatch20.7cert4

sangoma certified_asteriskMatch20.7cert5

sangoma certified_asteriskMatch20.7cert6

[
  {
    "vendor": "asterisk",
    "product": "asterisk",
    "versions": [
      {
        "version": "< 18.26.3",
        "status": "affected"
      },
      {
        "version": ">= 20.00.0, < 20.15.1",
        "status": "affected"
      },
      {
        "version": ">= 21.00.0, < 21.10.1",
        "status": "affected"
      },
      {
        "version": ">= 22.00.0, < 22.5.1",
        "status": "affected"
      },
      {
        "version": ">= 20.7-cert6, < 20.7-cert7",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/asterisk/asterisk/security/advisories/GHSA-mrq5-74j5-f5cr

25 Aug 2025 17:42Current

7High risk

Vulners AI Score7

CVSS 3.16.5

EPSS0.01057

SSVC

CWE-476