CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

212 matches found

RedhatCVE•added 2026/02/07 7:31 p.m.•8 views

CVE-2026-23739

A flaw was found in Asterisk. The astxmlopen function in xml.c processes XML documents using libxml with unsafe parsing options, enabling entity expansion and XInclude processing. A remote attacker can exploit this by providing specially crafted XML input, leading to XML External Entity XXE or...

6.5CVSS5.6AI score0.00176EPSS

Exploits0References4

NVD•added 2026/02/06 5:16 p.m.•5 views

CVE-2026-23740

Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, when astcoredumper writes its gdb init and output files to a directory that is world-writable for example /tmp, an attacker with write permissionwhich is a...

7.8CVSS0.00112EPSS

Exploits0References1

CNNVD•added 2026/02/06 12:0 a.m.•6 views

Asterisk 安全漏洞

Asterisk is a software for PBX systems developed by Asterisk OpenSource. It runs on Linux systems and supports IP calls using SIP, IAX, and H323 protocols. Versions prior to 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2 have security vulnerabilities. These vulnerabilities stem from astcoredump...

7.8CVSS6.1AI score0.00112EPSS

Exploits0References3

Tenable Nessus•added 2026/02/06 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-23738

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, user...

6.1CVSS5.4AI score0.0016EPSS

Exploits0References2

Tenable Nessus•added 2026/02/06 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-23739

6.5CVSS5.3AI score0.00176EPSS

Exploits0References2

Tenable Nessus•added 2026/02/06 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-23741

8.8CVSS5.8AI score0.00173EPSS

Exploits0References2

Positive Technologies•added 2026/01/01 12:0 a.m.•6 views

PT-2026-6748

Name of the Vulnerable Software and Affected Versions Asterisk versions prior to 20.7-cert9 Asterisk versions prior to 20.18.2 Asterisk versions prior to 21.12.1 Asterisk versions prior to 22.8.2 Asterisk versions prior to 23.2.2 Description The ast xml open function in Asterisk’s xml.c component...

2CVSS5.5AI score0.00176EPSS

Exploits0References7

Positive Technologies•added 2026/01/01 12:0 a.m.•4 views

PT-2026-6749

Name of the Vulnerable Software and Affected Versions Asterisk versions prior to 20.7-cert9 Asterisk versions prior to 20.18.2 Asterisk versions prior to 21.12.1 Asterisk versions prior to 22.8.2 Asterisk versions prior to 23.2.2 Description Asterisk is a private branch exchange and telephony...

7.8CVSS5.9AI score0.00112EPSS

Exploits0References7