Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:38458
HistoryDec 13, 2022 - 11:44 p.m.

Denial Of Service (DoS)

2022-12-1323:44:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
denial of service
asterisk
vulnerability
res_pjsip_pubsub.c
use after free
subscription
reliable transport
application crash

0.002 Low

EPSS

Percentile

59.1%

asterisk is vulnerable to Denial Of Service (DoS). The vulnerability exists due to the use after free in res_pjsip_pubsub.c, allowing an attacker to crash the application by performing activity on a subscription via a reliable transport at the same time that Asterisk is also performing activity on that subscription.