Lucene search
MitreCVELIST:CVE-2022-26651HistoryApr 15, 2022 - 12:00 a.m.
CVE-2022-26651
2022-04-1500:00:00
mitre
www.cve.org
An issue was discovered in Asterisk through 19.x and Certified Asterisk through 16.8-cert13. The func_odbc module provides possibly inadequate escaping functionality for backslash characters in SQL queries, resulting in user-provided data creating a broken SQL query or possibly a SQL injection. This is fixed in 16.25.2, 18.11.2, and 19.3.2, and 16.8-cert14.
Related
nvd
nvd
CVE-2022-26651
2022-04-15 05:15:06
nessus
nessus
FreeBSD : Asterisk -- func_odbc: Possible SQL Injection (a5de43ed-bc49-11ec-b516-0897988a1c07)
2022-04-14 00:00:00
Debian DSA-5285-1 : asterisk - security update
2022-11-18 00:00:00
Debian DLA-3194-1 : asterisk - LTS security update
2022-11-19 00:00:00
ubuntucve
ubuntucve
CVE-2022-26651
2022-04-15 00:00:00
alpinelinux
alpinelinux
CVE-2022-26651
2022-04-15 05:15:06
osv
osv
CVE-2022-26651
2022-04-15 05:15:06
asterisk - security update
2022-11-17 00:00:00
asterisk - security update
2022-11-17 00:00:00
prion
prion
Sql injection
2022-04-15 05:15:00
cve
cve
CVE-2022-26651
2022-04-15 05:15:06
freebsd
freebsd
Asterisk -- func_odbc: Possible SQL Injection
2022-04-14 00:00:00
debiancve
debiancve
CVE-2022-26651
2022-04-15 05:15:06
veracode
veracode
SQL Injection
2022-04-22 16:29:47
cnvd
cnvd
Asterisk SQL Injection Vulnerability
2022-04-19 00:00:00
openvas
openvas
Asterisk SQLi Vulnerability (AST-2022-003)
2022-03-08 00:00:00
Debian: Security Advisory (DLA-3194-1)
2022-11-18 00:00:00
Debian: Security Advisory (DSA-5285-1)
2022-11-19 00:00:00
debian
debian
[SECURITY] [DSA 5285-1] asterisk security update
2022-11-17 21:42:58
[SECURITY] [DLA 3194-1] asterisk security update
2022-11-17 11:35:25