Lucene search
+L

8 matches found

nessus
nessus
added 2025/08/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-47779

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cer...

7.7CVSS7.2AI score0.00438EPSS
Exploits1References2
openvas
openvas
added 2025/06/03 12:0 a.m.4 views

Debian: Security Advisory (DLA-4206-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.00438EPSS
Exploits2References2
nessus
nessus
added 2025/06/02 12:0 a.m.6 views

Debian dla-4206 : asterisk - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4206 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4206-1 [email protected]...

7.8CVSS5.8AI score0.00438EPSS
Exploits2References6
circl
circl
added 2025/05/22 5:43 p.m.33 views

CVE-2025-47779

creationtimestamp| type| source ---|---|--- 2025-05-22 17:43:36+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114552721469007874...

7.7CVSS7.6AI score0.00438EPSS
Exploits1References1
nvd
nvd
added 2025/05/22 5:15 p.m.18 views

CVE-2025-47779

Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...

7.7CVSS0.00438EPSS
Exploits1References3
debiancve
debiancve
added 2025/05/22 4:54 p.m.10 views

CVE-2025-47779

Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...

7.7CVSS5.4AI score0.00438EPSS
Exploits1
vulnrichment
vulnrichment
added 2025/05/22 4:54 p.m.9 views

CVE-2025-47779 Using malformed From header can forge identity with ";" or NULL in name portion

Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...

7.7CVSS7.6AI score0.00438EPSS
Exploits1References2
cvelist
cvelist
added 2025/05/22 4:54 p.m.16 views

CVE-2025-47779 Using malformed From header can forge identity with ";" or NULL in name portion

Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...

7.7CVSS0.00438EPSS
Exploits1References2
Rows per page
Query Builder