Asterisk is an open source private branch exchange and telephony toolkit. After upgrade to 18.23.0, ALL unauthorized SIP requests are identified as PJSIP Endpoint of local asterisk server. This vulnerability is fixed in 18.23.1, 20.8.1, and 21.3.1.
References
Configurations
No configuration.
History
21 Nov 2024, 09:19
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/asterisk/asterisk/commit/85241bd22936cc15760fd1f65d16c98be7aeaf6d - | |
References | () https://github.com/asterisk/asterisk/pull/600 - | |
References | () https://github.com/asterisk/asterisk/pull/602 - | |
References | () https://github.com/asterisk/asterisk/security/advisories/GHSA-qqxj-v78h-hrf9 - | |
Summary |
|
17 May 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-05-17 17:15
Updated : 2024-11-21 09:19
NVD link : CVE-2024-35190
Mitre link : CVE-2024-35190
CVE.ORG link : CVE-2024-35190
JSON object : View
Products Affected
No product.