Lucene search
+L

4 matches found

Debian
Debian
added 2024/01/04 9:21 p.m.142 views

[SECURITY] [DSA 5596-1] asterisk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5596-1 [email protected] https://www.debian.org/security/ Markus Koschany January 04, 2024 https://www.debian.org/security/faq -...

9.8CVSS8AI score0.4557EPSS
Exploits5
OpenVAS
OpenVAS
added 2023/12/15 12:0 a.m.26 views

Asterisk Multiple Vulnerabilities (Dec 2023)

Asterisk is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:digium:asterisk"; if description...

8.2CVSS6.4AI score0.4557EPSS
Exploits5References5
NVD
NVD
added 2023/12/14 8:15 p.m.16 views

CVE-2023-37457

Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; as well as ceritifed-asterisk 18.9-cert5 and prior, the 'update' functionality of the PJSIPHEADER dialplan function can exceed the available buffer space...

8.2CVSS0.01125EPSS
Exploits0References3
CVE
CVE
added 2023/12/14 7:43 p.m.238 views

CVE-2023-37457

CVE-2023-37457 affects Asterisk and its PJSIP_HEADER dialplan function. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; and ceritifed-asterisk 18.9-cert5 and prior, the update functionality can exceed the header storage buffer, potentially overwriting memory or causing a cra...

8.2CVSS7.8AI score0.01125EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder