Asterisk@12.4.0 Security Vulnerabilities and Issues — Asterisk@12.4.0 CVE List

Lucene search

DigiumAsterisk12.4.0

3 matches found

CVE•added 2014/11/26 3:59 p.m.•74 views

CVE-2014-6610

Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1 and Certified Asterisk 11.6 before 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly handled in the ReceiveFax di...

4CVSS3.7AI score0.01176EPSS

CVE•added 2014/12/12 3:59 p.m.•60 views

CVE-2014-9374

Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x before 11.14.2, 12.x before 12.7.2, and 13.x before 13.0.2 and Certified Asterisk 11.6 before 11.6-cert9 allows remote attackers to cause a denial of service (crash) by sending a zero length f...

5CVSS6.5AI score0.49122EPSS

CVE•added 2014/11/26 3:59 p.m.•53 views

CVE-2014-6609

The res_pjsip_pubsub module in Asterisk Open Source 12.x before 12.5.1 allows remote authenticated users to cause a denial of service (crash) via crafted headers in a SIP SUBSCRIBE request for an event package.

4CVSS6.3AI score0.00614EPSS