Digium Vulnerabilità

Sequenza temporale

Genere

Communications System	146
Not Defined	4

Prodotto

Digium Asterisk	144
Digium s800i	2
Digium Certified Asterisk	1
Digium Asterisk Open Source	1
Digium Asterisk GUI	1

Contromisure

Official Fix	139
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	11

Sfruttabilità

High	2
Functional	0
Proof-of-Concept	49
Unproven	22
Not Defined	77

Accesso al vettore

Not Defined	0
Physical	0
Local	3
Adjacent	2
Network	145

Autenticazione

Not Defined	0
High	1
Low	38
None	111

Interazione dell'utente

Not Defined	0
Required	1
None	149

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	1
≤5	16
≤6	59
≤7	27
≤8	38
≤9	6
≤10	3

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	7
≤5	38
≤6	43
≤7	39
≤8	15
≤9	8
≤10	0

VulDB

≤1	0
≤2	0
≤3	1
≤4	3
≤5	16
≤6	65
≤7	20
≤8	37
≤9	5
≤10	3

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	6
≤7	3
≤8	11
≤9	3
≤10	1

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	0
≤7	0
≤8	2
≤9	0
≤10	0

Fornitore

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 giorni

<1k	45
<2k	34
<5k	60
<10k	2
<25k	5
<50k	4
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	150
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Products (7): Addons Module (1), Asterisk (144), Asterisk GUI (1), Asterisk Open Source (1), Certified Asterisk (1), Zaptel (1), s800i (2)

Link to Vendor Website: https://www.digium.com/

Data di pubblicazione	Base	Temp	Vulnerabilità	Prod	Sfr	Con	EPSS	CTI	CVE
15/12/2023	3.8	3.7	Digium Asterisk directory traversal	Communications System	Not Defined	Official Fix	0.00104	0.00	CVE-2023-49294
15/12/2023	5.6	5.5	Digium Asterisk DTLS denial of service	Communications System	Not Defined	Official Fix	0.00513	0.00	CVE-2023-49786
15/12/2023	6.4	6.3	Digium Asterisk buffer overflow	Communications System	Not Defined	Official Fix	0.00121	0.05	CVE-2023-37457
15/04/2022	5.5	5.3	Digium Asterisk STIR escalazione di privilegi	Communications System	Not Defined	Official Fix	0.00687	0.02	CVE-2022-26499
15/04/2022	6.3	6.0	Digium Asterisk/Certified Asterisk func_odbc sql injection	Communications System	Not Defined	Official Fix	0.00740	0.00	CVE-2022-26651
15/04/2022	4.3	4.1	Digium Asterisk STIR denial of service	Communications System	Not Defined	Official Fix	0.02940	0.00	CVE-2022-26498
21/02/2021	4.3	4.3	Digium Asterisk WebRTC Client res_rtp_asterisk.c buffer overflow	Communications System	Not Defined	Official Fix	0.00263	0.00	CVE-2021-26714
19/02/2021	5.1	5.1	Digium Asterisk SDP Negotiation res_pjsip_session.c denial of service	Communications System	Not Defined	Official Fix	0.00193	0.00	CVE-2021-26906
12/07/2019	4.2	4.2	Digium Asterisk Open Source SDP chan_sip denial of service	Communications System	Not Defined	Not Defined	0.00473	0.00	CVE-2019-13161
12/07/2019	6.4	6.4	Digium Asterisk res_pjsip_messaging buffer overflow	Communications System	Not Defined	Not Defined	0.04717	0.00	CVE-2019-12827
14/11/2018	7.4	7.2	Digium Asterisk DNS SRV/NAPTR Lookup buffer overflow	Communications System	Not Defined	Official Fix	0.00467	0.00	CVE-2018-19278
22/12/2017	6.4	6.1	Digium Asterisk PJSIP Channel Driver Contact Header escalazione di privilegi	Communications System	Not Defined	Official Fix	0.92868	0.03	CVE-2017-17850
13/12/2017	4.8	4.7	Digium Asterisk RTCP Stack buffer overflow	Communications System	Not Defined	Official Fix	0.92854	0.00	CVE-2017-17664
02/12/2017	6.4	6.3	Digium Asterisk chan_skinny Channel Driver chan_skinny.c denial of service	Communications System	High	Official Fix	0.69318	0.02	CVE-2017-17090
09/11/2017	5.6	5.4	Digium Asterisk pjsip Session Object buffer overflow	Communications System	Not Defined	Official Fix	0.02090	0.00	CVE-2017-16672
09/11/2017	7.5	7.2	Digium Asterisk CDR Handller buffer overflow	Communications System	Not Defined	Official Fix	0.01754	0.00	CVE-2017-16671
10/10/2017	7.4	7.2	Digium Asterisk RTCP Packet rivelazione di un 'informazione	Communications System	Not Defined	Official Fix	0.00192	0.00	CVE-2017-14603
26/09/2017	7.5	7.5	Digium Asterisk GUI escalazione di privilegi	Communications System	Not Defined	Not Defined	0.00115	0.00	CVE-2017-14001
02/09/2017	8.5	8.2	Digium Asterisk escalazione di privilegi	Communications System	Not Defined	Official Fix	0.96119	0.00	CVE-2017-14100
02/09/2017	6.4	6.1	Digium Asterisk res_rtp_asterisk.c rivelazione di un 'informazione	Communications System	Not Defined	Official Fix	0.02056	0.00	CVE-2017-14099
02/09/2017	6.4	6.1	Digium Asterisk PJSIP Channel Driver escalazione di privilegi	Communications System	Not Defined	Official Fix	0.92718	0.00	CVE-2017-14098
02/08/2017	5.2	5.1	Digium Addons Module add-license-form.php cross site scripting	Sconosciuto	Not Defined	Official Fix	0.00164	0.02	CVE-2015-2690
02/06/2017	7.4	7.1	Digium Asterisk PJSIP buffer overflow	Communications System	Not Defined	Official Fix	0.01208	0.06	CVE-2017-9372
02/06/2017	6.4	6.1	Digium Asterisk PJSIP rivelazione di un 'informazione	Communications System	Not Defined	Official Fix	0.00660	0.00	CVE-2017-9359
02/06/2017	6.4	6.1	Digium Asterisk SCCP Packet denial of service	Communications System	Not Defined	Official Fix	0.00694	0.05	CVE-2017-9358

125 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 125 results.

◂ PrecedenteVisione D'insiemeIl prossimo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!