Lucene search
K

4 matches found

Check Point Advisories
Check Point Advisories
added 2019/10/24 12:0 a.m.20 views

Asterisk PJSIP Information Disclosure (CVE-2018-12227)

An information disclosure vulnerability has been reported in Asterisk PJSIP. Successful exploitation could result of endpoint presence disclosure to the remote user...

5CVSS0.9AI score0.03532EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/06/15 12:0 a.m.28 views

Asterisk 13.x < 13.21.1 / 14.x < 14.7.7 / 13.13 < 13.18-cert4 / 13.21 < 13.21-cert2 Information Disclosure Vulnerability (AST-2018-008)

According to its SIP banner, the version of Asterisk running on the remote host is 13.x prior to 13.21.1, 14.x prior to 14.7.7, or 13.18 prior to 13.18-cert4. It is therefore, affected by a remote denial of service attack as described in AST-2018-008. Note that Nessus has not tested for these...

5.3CVSS6.4AI score0.03532EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/06/12 4:29 a.m.26 views

CVE-2018-12227

An issue was discovered in Asterisk Open Source 13.x before 13.21.1, 14.x before 14.7.7, and 15.x before 15.4.1 and Certified Asterisk 13.18-cert before 13.18-cert4 and 13.21-cert before 13.21-cert2. When endpoint specific ACL rules block a SIP request, they respond with a 403 forbidden. However,...

5.3CVSS6.4AI score0.03532EPSS
Exploits0References3
CVE
CVE
added 2018/06/12 4:0 a.m.103 views

CVE-2018-12227

CVE-2018-12227 affects Asterisk Open Source 13.x before 13.21.1, 14.x before 14.7.7, and 15.x before 15.4.1 (including Certified Asterisk 13.18-cert4/13.21-cert2). The issue is an information-disclosure in SIP ACL handling: when endpoint-specific ACLs block a request, a 403 is returned; if the en...

5.3CVSS5.6AI score0.03532EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder