Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:47 a.m.4 views

SUSE CVE-2017-7617

Remote code execution can occur in Asterisk Open Source 13.x before 13.14.1 and 14.x before 14.3.1 and Certified Asterisk 13.13 before 13.13-cert3 because of a buffer overflow in a CDR user field, related to X-ClientCode in chansip, the CDR dialplan function, and the AMI Monitor action...

8.8CVSS9.2AI score0.06243EPSS
Exploits0References4
OSV
OSV
added 2021/03/15 9:49 p.m.3 views

USN-4814-1 asterisk vulnerabilities

Richard Mudgett discovered that Asterisk did not properly check the length of input string when setting the user field for PartyB on a CDR. A remote attacker could use this vulnerability to cause a denial of service crash or potentially execute arbitrary code. CVE-2017-16671 Alex Villacis Lasso...

8.8CVSS7.5AI score0.06243EPSS
Exploits0References3
NVD
NVD
added 2017/04/10 2:59 p.m.27 views

CVE-2017-7617

Remote code execution can occur in Asterisk Open Source 13.x before 13.14.1 and 14.x before 14.3.1 and Certified Asterisk 13.13 before 13.13-cert3 because of a buffer overflow in a CDR user field, related to X-ClientCode in chansip, the CDR dialplan function, and the AMI Monitor action...

8.8CVSS9.1AI score0.06243EPSS
Exploits0References3
CVE
CVE
added 2017/04/10 2:0 p.m.94 views

CVE-2017-7617

CVE-2017-7617 affects Asterisk Open Source 13.x before 13.14.1 and 14.x before 14.3.1, and Certified Asterisk 13.13 before 13.13-cert3. The issue is a buffer overflow in the CDR user field (in Party A context for the CDR and related to X-ClientCode in chan_sip), enabling remote code execution. Im...

8.8CVSS8.9AI score0.06243EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder