114 matches found
CVE-2019-13161
CVE-2019-13161 affects Asterisk Open Source (through 13.x/14.x/15.x/16.x and Certified Asterisk up to 13.21-cert3). The issue is a pointer dereference in chan_sip during SDP negotiation, which can crash Asterisk when handling an SDP answer to an outgoing T.38 re-invite. Exploitation requires forc...
CVE-2019-12827
CVE-2019-12827 : Buffer overflow in Digium Asterisk’s res_pjsip_messaging (versions 13.21-cert3, 13.27.0, 15.7.2, 16.4.0 and earlier) can be triggered by a specially crafted SIP MESSAGE, allowing remote authenticated users to crash Asterisk. The issue is a memory boundary violation in the res_pjs...
CVE-2019-18610
CVE-2019-18610 affects Sangoma Asterisk: a vulnerability in manager.c allows a remote authenticated Asterisk Manager Interface (AMI) user with no system authorization to execute arbitrary commands via a crafted Originate AMI request. Affected are Asterisk up to 13.x, 16.x, 17.x and Certified Aste...
CVE-2021-32558
The CVE-2021-32558 issue affects Sangoma Asterisk and Certified Asterisk: IAX2 channel driver may crash when receiving a packet with an unsupported media format. Affected versions include Asterisk 13.x before 13.38.3, 16.x before 16.19.1, 17.x before 17.9.4, 18.x before 18.5.1, and Certified Aste...
CVE-2023-37457
CVE-2023-37457 affects Asterisk and its PJSIP_HEADER dialplan function. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; and ceritifed-asterisk 18.9-cert5 and prior, the update functionality can exceed the header storage buffer, potentially overwriting memory or causing a cra...
CVE-2019-15297
CVE-2019-15297 affects res_pjsip_t38 in Sangoma Asterisk 15.x before 15.7.4 and 16.x before 16.5.1. The vulnerability allows an attacker to trigger a crash by sending a declined stream in a T.38 re-invite response, caused by a NULL session media object dereference. The issue is reproduced as a re...
CVE-2019-18790
CVE-2019-18790ffects Sangoma Asterisk chan_sip.c: a SIP request can alter a peer’s IP address to hijack calls. Affected: Asterisk 13.x <13.29.2, 16.x <16.6.2, 17.x <17.0.1; Certified Asterisk
CVE-2022-26651
The CVE-2022-26651 issue affects Asterisk through 19.x and Certified Asterisk through 16.8-cert13, in the func_odbc module, where inadequate escaping for backslash characters in SQL queries can cause user-provided data to create broken or injectable SQL. The documented impact includes potential i...
CVE-2013-5642
CVE-2013-5642 affects Asterisk and related builds (Open Source 1.8.x up to 1.8.23.1, 10.x up to 10.12.3, 11.x up to 11.5.1; Certified Asterisk 1.8.15 up to 1.8.15-cert3 and 11.2 up to 11.2-cert2; Asterisk Digiumphones 10.x-digiumphones up to 10.12.3-digiumphones). The vulnerability is a remote de...
CVE-2013-5641
CVE-2013-5641 affects Asterisk SIP channel driver (channels/chan_sip.c) in Asterisk Open Source 1.8.17.x–1.8.22.x, 1.8.23.x before 1.8.23.1, and 11.x before 11.5.1 (Certified Asterisk 1.8.15 before 1.8.15-cert3 and 11.2 before 11.2-cert2). The vulnerability allows remote attackers to cause a deni...
CVE-2017-14100
CVE-2017-14100 is a remote command execution vulnerability in Asterisk versions: 11.x before 11.25.2, 13.x before 13.17.1, 14.x before 14.6.1, and Certified Asterisk 11.x before 11.6-cert17 and 13.x before 13.13-cert5. It is caused by the app_minivm module’s externnotify option used by the Minivm...
CVE-2021-26713
CVE-2021-26713 affects Sangoma Asterisk: a stack-based buffer overflow in res_rtp_asterisk.c allows an authenticated WebRTC client to crash Asterisk by rapidly issuing multiple hold/unhold requests. Root cause is a signedness comparison mismatch. Affected revisions: Sangoma Asterisk before 16.16....
CVE-2021-26906
The CVE-2021-26906 entry describes an SDP negotiation vulnerability in PJSIP within Digium Asterisk (and Certified Asterisk) up to specific older branches, allowing a remote server to potentially crash Asterisk by sending SIP responses that trigger an SDP negotiation failure. Affected products in...
CVE-2014-8418
CVE-2014-8418 affects Asterisk Open Source: DB dialplan function allows remote authenticated users to gain privileges via a call from an external protocol (AMI). Affected: 1.8.x before 1.8.32, 11.x before 11.1.4.1, 12.x before 12.7.1, 13.x before 13.0.1; Certified Asterisk 1.8.x before 1.8.28-cer...
CVE-2007-5358
CVE-2007-5358 affects Asterisk 1.4.x (before 1.4.13) voicemail functionality when using IMAP storage. The issue is described as multiple buffer overflows in voicemail handling, potentially allowing arbitrary code execution. Two attack vectors are noted: (1) remote attackers could execute arbitrar...
CVE-2021-26712
CVE-2021-26712 describes a flaw in res_srtp.c in Sangoma Asterisk versions 13.38.1, 16.16.0, 17.9.1, 18.2.0 and Certified Asterisk 16.8-cert5 where an unauthenticated remote attacker can prematurely terminate secure calls by replaying SRTP packets. The connected records confirm the affected produ...
CVE-2018-7284
CVE-2018-7284 affects Asterisk and Certified Asterisk; during SUBSCRIBE, res_pjsip_pubsub does not cap Accept headers (limit 32) and can write outside memory, causing a crash. Affected: 13.x–15.x releases (precise bounds in sources). Exploitation details exist (Exploit-DB), with vendor advisories...
CVE-2017-17090
CVE-2017-17090 affects the chan_skinny (SCCP) driver in Asterisk, where flooding the channel driver with certain requests can exhaust VM memory and cause the process to stop handling requests. Public details include both exploitation references (Exploit-DB entry for 13.17.2) and multiple vendor a...
CVE-2020-35776
Summary of CVE-2020-35776 (CVE ID) : The vulnerability occurs in Sangoma Asterisk due to a buffer overflow in the code path for res_pjsip_diversion.c. Affects Asterisk versions 13.38.1, 16.15.1, 17.9.1, and 18.1.1. The root cause is a buffer overflow that can be triggered by misusing SIP 181 resp...
CVE-2023-49294
CVE-2023-49294 affects Asterisk: read arbitrary files when live_dangerously is not enabled. Affected versions are pre-18.20.1, pre-20.5.1, pre-21.0.1, and certified-asterisk before 18.9-cert6. The issue has a fix in 18.20.1, 20.5.1, 21.0.1, and certified-asterisk from 18.9-cert6 onward. Public ma...
CVE-2022-26499
CVE-2022-26499 describes an SSRF vulnerability in Asterisk up to 19.x. When STIR/SHAKEN is used, an attacker can craft requests via the Identity header to interfaces such as localhost, enabling arbitrary GET-like requests. The issue is fixed in Asterisk releases 16.25.2, 18.11.2, and 19.3.2. This...
CVE-2019-18976
CVE-2019-18976 affects Sangoma Asterisk and Certified Asterisk up to 13.x; a NULL pointer dereference and crash can occur when receiving a re-invite that initiates T.38 faxing if the SDP has a port of 0 and no c-line. Public details confirm the affected file is res_pjsip_t38.c and the issue is a ...
CVE-2022-26498
CVE-2022-26498 affects Asterisk up to 19.x. STIR/SHAKEN handling may allow downloading non-certificate files, leading to Resource Exhaustion . This is fixed in 16.25.2, 18.11.2, and 19.3.2 ; upgrade to one of these versions to remediate.
CVE-2015-3008
CVE-2015-3008 affects Asterisk Open Source: 1.8 before 1.8.32.3, 11.x before 11.17.1, 12.x before 12.8.2, 13.x before 13.3.2, and Certified Asterisk equivalents (e.g., 1.8.28 before 1.8.28-cert5, 11.6 before 11.6-cert11, 13.1 before 13.1-cert2). Root cause: improper handling of a null byte in the...
CVE-2021-26717
The CVE-2021-26717 issue affects Sangoma Asterisk: 16.x before 16.16.1, 17.x before 17.9.2, 18.x before 18.2.1, and Certified Asterisk before 16.8-cert6. During T.38 renegotiation, if the initial remote response is delayed, Asterisk may send both audio and T.38 in the SDP; if the remote answers w...
CVE-2019-15639
Technical details about CVE-2019-15639 are not publicly provided in the connected documents. Affected versions and exploitation specifics are not elaborated here; monitor for updates.
CVE-2017-16672
CVE-2017-16672 affects Asterisk Open Source: memory leak in pjsip session objects when a call is rejected before establishment. Affected versions: Asterisk 13 prior to 13.18.1; 14 prior to 14.7.1; 15 prior to 15.1.1; Certified Asterisk 13.13 prior to 13.13-cert7. Impact: potential memory exhausti...
CVE-2019-7251
CVE-2019-7251 affects the Digium Asterisk project, specifically the res_pjsip_sdp_rtp module. The vulnerability is described as an Integer Signedness issue for a return code in Asterisk versions 15.7.1 and earlier and 16.1.1 and earlier, which could allow remote authenticated users to crash Aster...
CVE-2018-7286
CVE-2018-7286 affects Asterisk and Certified Asterisk prior to vendor patches: res_pjsip accepts a sequence of SIP INVITE messages over TCP/TLS from an authenticated remote user, then the connection is abruptly closed, causing a segmentation fault (DoS). Affected: Asterisk versions up to 13.19.1,...
CVE-2020-35652
CVE-2020-35652 affects Sangoma Asterisk, specifically the res_pjsip_diversion.c path. A crash can occur when processing SIP messages with a History-Info header containing a tel-uri or when a SIP 181 response with a tel-uri in the Diversion header is received. Affected lines: Asterisk/Sangoma rele...
CVE-2012-5976
CVE-2012-5976 describes stack-consumption vulnerabilities in Asterisk Open Source where parsing of TCP-based protocols (SIP, HTTP, XMPP) could be exploited to crash the daemon. Affected: Asterisk 1.8.x before 1.8.19.1, 10.x before 10.11.1, 11.x before 11.1.2; and corresponding Certified Asterisk ...
CVE-2014-2287
CVE-2014-2287 affects Asterisk chan_sip in 1.8.x prior to 1.8.26.1, 11.8.x prior to 11.8.1, and 12.1.x prior to 12.1.1, plus certain Certified Asterisk builds. A remote authenticated user can cause a denial of service by sending an INVITE with a malformed or invalid Session-Expires or Min-SE head...
CVE-2018-12227
CVE-2018-12227 affects Asterisk Open Source 13.x before 13.21.1, 14.x before 14.7.7, and 15.x before 15.4.1 (including Certified Asterisk 13.18-cert4/13.21-cert2). The issue is an information-disclosure in SIP ACL handling: when endpoint-specific ACLs block a request, a 403 is returned; if the en...
CVE-2017-14099
CVE-2017-14099 affects Asterisk 11.x (before 11.25.2), 13.x (before 13.17.1) and 14.x (before 14.6.1), including Certified Asterisk, with unauthorized data disclosure via RTP media hijacking when strict RTP, NAT, and symmetric RTP are combined. Root cause: changes to strict RTP handling allowed l...
CVE-2006-5444
CVE-2006-5444 involves an integer overflow in Asterisk’s Skinny channel driver (chan_skinny.c). Affected are Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, used by Cisco SCCP phones. An attacker can trigger a heap-based buffer overflow via a crafted dlen value, potentially leading to remot...
CVE-2017-14603
CVE-2017-14603 affects Asterisk 11.x prior to 11.25.3, 13.x prior to 13.17.2, and 14.x prior to 14.6.2 (plus Certified Asterisk 11.x before 11.6-cert18 and 13.x before 13.13-cert6). The issue is insufficient RTCP packet validation, which can allow reading stale buffer contents and, when combined ...
CVE-2018-17281
CVE-2018-17281 affects the Asterisk res_http_websocket.so module and allows an attacker to crash Asterisk by sending a crafted HTTP Upgrade request to websocket. Affected: Asterisk up to 13.23.0, 14.7.x up to 14.7.7, 15.x up to 15.6.0, and Certified Asterisk up to 13.21-cert2. Consequences: denia...
CVE-2023-49786
Asterisk is affected by CVE-2023-49786 due to a race condition in the DTLS handshake during DTLS-SRTP media setup. The vulnerability is triggered in affected releases prior to 18.20.1, 20.5.1, 21.0.1 and the certified-asterisk 18.9-cert6. The issue allows continuous DoS by denying new DTLS-SRTP e...
CVE-2016-7551
CVE-2016-7551 affects Asterisk Open Source 11.x (before 11.23.1) and 13.x (before 13.11.1), as well as Certified Asterisk 11.6 (before 11.6-cert15) and 13.8 (before 13.8-cert3). The vulnerability in chain_sip allows remote attackers to cause a denial of service via port exhaustion. The available ...
CVE-2006-1827
Vulnerability: Asterisk
CVE-2017-17850
CVE-2017-17850 affects Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18-cert1 and older. If a SIP request creates a dialog and the SIP contact header is missing while using the PJSIP channel driver, Asterisk may crash. Authentication reduces risk by requiring prior author...
CVE-2021-31878
Affected software. Asterisk prior to 16.19.1 and prior to 18.5.1 uses the PJSIP stack. Vulnerability and root cause. An issue exists in PJSIP where a re-INVITE without SDP, received after Asterisk has sent a BYE, can be exploited. This is the explicit condition described in CVE-2021-31878. Impact...
CVE-2014-4047
CVE-2014-4047 signature in Asterisk describes a remote denial-of-service due to exhaustion of HTTP sessions caused by a large number of TCP connections. Affected products include Asterisk Open Source 1.8.x before 1.8.28.1, 11.x before 11.10.1, and 12.x before 12.3.1, plus Certified Asterisk 1.8.1...
CVE-2016-2316
CVE-2016-2316 affects Asterisk Open Source and Certified Asterisk: chan_sip allows remote denial of service when timert1 in sip.conf > 1245, via large retransmit timeout values. Affected: Asterisk 1.8.x; 11.x before 11.21.1; 12.x; 13.x before 13.7.1; Certified Asterisk 1.8.28; 11.6 before 11.6...
CVE-2013-7100
The connected MGASA-2014-0171 advisory provides concrete details for CVE-2013-7100: Asterisk before 11.6.1 decodes a 16‑bit SMS message with an odd length in the unpacksms16 function, causing an infinite loop and a crash due to memory corruption (buffer overflow). This is the root cause and the i...
CVE-2017-16671
CVE-2017-16671 affects Asterisk Open Source 13.x (<13.18.1), 14.x (<14.7.1), 15.x (<15.1.1) and Certified Asterisk 13.13 (=13.23.1, and FreeBSD/FreeBSD-based advisories mirror the fix trajectory. If exploiting, an attacker could trigger overflow via crafted CDR updates. No exploitation s...
CVE-2017-7617
CVE-2017-7617 affects Asterisk Open Source 13.x before 13.14.1 and 14.x before 14.3.1, and Certified Asterisk 13.13 before 13.13-cert3. The issue is a buffer overflow in the CDR user field (in Party A context for the CDR and related to X-ClientCode in chan_sip), enabling remote code execution. Im...
CVE-2010-1224
CVE-2010-1224 affects Asterisk Open Source through the ACL code at main/acl.c. Versions 1.6.0.x before 1.6.0.25, 1.6.1.x before 1.6.1.17, and 1.6.2.x before 1.6.2.5 fail to correctly enforce remote host access controls when using CIDR "/0" in permit= and deny= rules, due to an improper arithmetic...
CVE-2017-14098
CVE-2017-14098 affects the Asterisk pjsip channel driver (res_pjsip). A specially crafted tel URI in a From, To, or Contact header can cause Asterisk to crash. Affected versions are Asterisk 13.x prior to 13.17.1 and 14.x prior to 14.6.1. The vulnerability is demonstrated by crash behavior withou...
CVE-2014-6610
CVE-2014-6610 affects Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1, and Certified Asterisk 11.6 before 11.6-cert6, when using the res_fax_spandsp module. A remote authenticated user can crash the system via an out-of-call message, caused by improper handling in the ReceiveFax d...