The vulnerability of the implementations of DTLS (Datagram Transport Layer Security) and SRTP protocols in Asterisk IP-telephony management systems and Certified Asterisk allows a attacker to induce a service failure.

The vulnerability of DTLS and SRTP protocols for Asterisk IP-telephony systems and Certified Asterisk arises from the behavior of the message processing mechanism during ClientHello messages. Exploiting this vulnerability allows a malicious actor to cause service failures...

The vulnerability of the NSS libraries, related to errors in value generation during the processing of the ClientHello request, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the NSS libraries is related to errors in value generation during the processing of the ClientHello request. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...