UBUNTU-CVE-2018-7286

🗓️ 22 Feb 2018 00:29:00Reported by GoogleType

osv

osv🔗 osv.dev

Res_pjsip flaw crashes Asterisk by flood of Session Initiation Protocol invites over Transmission Control or Security Layer.

Reporter	Title	Published	Views	Family All 24
0day.today	Asterisk 15.2.0 chan_pjsip INVITE Denial Of Service Exploit	27 Feb 201800:00	–	zdt
Tenable Nessus	Asterisk 15.x < 15.2.2 Multiple Vulnerabilities (AST-2018-001 - AST-2018-006)	2 Mar 201800:00	–	nessus
Tenable Nessus	Asterisk 13.x < 13.19.2 / 14.x < 14.7.6 / 13.13 < 13.18-cert3 Multiple DoS Vulnerabilities (AST-2018-002, AST-2018-003, AST-2018-004, & AST-2018-005)	2 Mar 201800:00	–	nessus
Tenable Nessus	Debian DSA-4320-1 : asterisk - security update	17 Oct 201800:00	–	nessus
Tenable Nessus	FreeBSD : asterisk -- multiple vulnerabilities (933654ce-17b8-11e8-90b8-001999f8d30b)	23 Feb 201800:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2018-7286	20 Aug 202500:00	–	nessus
Circl	CVE-2018-7286	27 Feb 201800:00	–	circl
CNVD	Digium Asterisk Open Source and Certified Asterisk 'INVITE' Denial of Service Vulnerabilities	22 Feb 201800:00	–	cnvd
Check Point Advisories	Digium Asterisk Denial of Service (CVE-2018-7286)	17 Jan 201900:00	–	checkpoint_advisories
CVE	CVE-2018-7286	22 Feb 201800:00	–	cve

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2018-7286
downloads	www.downloads.asterisk.org/pub/security/AST-2018-005.html
issues	www.issues.asterisk.org/jira/browse/ASTERISK-27618
cve	www.cve.org/CVERecord

22 Apr 2026 12:02Current

6.8Medium risk

Vulners AI Score6.8

CVSS 36.5

EPSS0.54632

Remote authenticated users Session Initiation Protocol Invite flood Asterisk crash