vulnerability

Alpine Linux: CVE-2017-14098: asterisk Multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	2017-09-02	2017-09-26	2019-12-04

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

2017-09-02

Added

2017-09-26

Modified

2019-12-04

Description

In the pjsip channel driver (res_pjsip) in Asterisk 13.x before 13.17.1 and 14.x before 14.6.1, a carefully crafted tel URI in a From, To, or Contact header could cause Asterisk to crash.

Solution

alpine-linux-upgrade-asterisk

References

ALPINE-7792
BID-100583
CVE-2017-14098
https://attackerkb.com/topics/CVE-2017-14098

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today