[SECURITY] Fedora 42 Update: asterisk-18.26.4-1.fc42

Asterisk is a complete PBX in software. It runs on Linux and provides all of the features you would expect from a PBX and more. Asterisk does voice over IP in three protocols, and can interoperate with almost all standards-based telephony equipment using relatively inexpensive hardware...

[SECURITY] Fedora 44 Update: asterisk-18.26.4-1.fc44

Asterisk is a complete PBX in software. It runs on Linux and provides all of the features you would expect from a PBX and more. Asterisk does voice over IP in three protocols, and can interoperate with almost all standards-based telephony equipment using relatively inexpensive hardware...

[SECURITY] Fedora 44 Update: coturn-4.10.0-1.fc44

The Coturn TURN Server is a VoIP media traffic NAT traversal server and gatew ay. It can be used as a general-purpose network traffic TURN server/gateway, too. This implementation also includes some extra features. Supported RFCs: TURN specs: - RFC 5766 - base TURN specs - RFC 6062 - TCP relaying...

[SECURITY] Fedora 43 Update: matrix-synapse-1.147.1-1.fc43

Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in...

CVE-2025-15542 Denial of Service (DoS) of VoIP Communication on TP-Link VX800v

Improper handling of exceptional conditions in VX800v v1.0 in SIP processing allows an attacker to flood the device with crafted INVITE messages, blocking all voice lines and causing a denial of service on incoming calls...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001560)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001560 advisory. An out-of-bounds memory write flaw was found in how the Linux kernels Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port 1720. Th...

EUVD-2002-0662

Malware in sbrugna...

EUVD-2002-0664

Malware in sbrugna...

EUVD-2021-0132

Malware in sbrugna...

EUVD-2020-6457

Malware in sbrugna...

CVE-2023-22955

An issue was discovered on AudioCodes VoIP desk phones through 3.4.4.1000. The validation of firmware images only consists of simple checksum checks for different firmware components. Thus, by knowing how to calculate and where to store the required checksums for the flasher tool, an attacker is...

Asterisk 安全漏洞

Asterisk is an Asterisk open source software for PBX systems that runs on Linux and supports IP calls using SIP, IAX, and H323 protocols. Asterisk has a security vulnerability. An attacker exploited the vulnerability to cause a crash...

Side Channels Are Common

Really interesting research: "Lend Me Your Ear: Passive Remote Physical Side Channels on PCs." Abstract: We show that built-in sensors in commodity PCs, such as microphones, inadvertently capture electromagnetic side-channel leakage from ongoing computation. Moreover, this information is often...

Vishing Goes High-Tech: New 'Letscall' Malware Employs Voice Traffic Routing

Researchers have issued a warning about an emerging and advanced form of voice phishing vishing known as "Letscall." This technique is currently targeting individuals in South Korea. The criminals behind "Letscall" employ a multi-step attack to deceive victims into downloading malicious apps from...

Vishing Goes High-Tech: New 'Letscall' Malware Employs Voice Traffic Routing

Researchers have issued a warning about an emerging and advanced form of voice phishing vishing known as "Letscall." This technique is currently targeting individuals in South Korea. The criminals behind "Letscall" employ a multi-step attack to deceive victims into downloading malicious apps from...

The vulnerability of the MiVoice Connect business telephone system’s Mitel VoIP devices lies in the insufficient protection of the website structure, allowing attackers to access user conference information.

The vulnerability of the MiVoice Connect business telephone system’s VoIP devices related to insufficient protection of the website structure. Exploiting this vulnerability can allow a malicious actor to gain access to user conference information...

PT-2022-27145 · Beijing Zed 3 Technologies Co. · Voip Simpliclty Asg

Name of the Vulnerable Software and Affected Versions: Beijing Zed-3 Technologies Co.,Ltd VoIP simpliclty ASG version 8.5.0.17807 Description: The issue is related to Cross Site Scripting XSS, which is a type of security vulnerability that can be exploited by attackers to inject malicious scripts...

CVE-2022-44929

An access control issue in D-Link DVG-G5402SP GE1.03 allows unauthenticated attackers to escalate privileges via arbitrarily editing VoIP SIB profiles...

D-Link DVG-G5402SP 安全漏洞

D-Link DVG-G5402SP is a wireless router from China Youxun D-Link. The D-Link DVG-G5402SP is vulnerable to an access control error, which can be exploited by an unauthenticated attacker to achieve elevated privileges by editing arbitrary VoIP SIB files...

NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2022-0078)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - An out-of-bounds memory write flaw was found in how the Linux kernel's Voice Over IP H.323 connection tracking functionality handled connections on...