5.9 Medium
AI Score
Confidence
High
0.168 Low
EPSS
Percentile
96.1%
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP server is enabled (default is disabled), WebSocket payloads of size 0 are mishandled (with a busy loop).
downloads.digium.com/pub/security/AST-2018-006.html
www.securityfocus.com/bid/103120
www.securitytracker.com/id/1040419
issues.asterisk.org/jira/browse/ASTERISK-27658