The vulnerability of the app_minivm module in the MinivmNotify application of Asterisk and Certified Asterisk management systems allows a perpetrator to execute arbitrary commands.
The vulnerability of the appminivm module in the MinivmNotify application of the Asterisk control system and Certified Asterisk is related to insufficient validation of input data transmitted using the “externnotify” option. The identifier’s name and number, obtained from an unreliable source, ar...