CVE-2016-9938

Published Dec 12, 2016
Last updated 7 years ago
CVSS medium 5.3
Overview

Description: An issue was discovered in Asterisk Open Source 11.x before 11.25.1, 13.x before 13.13.1, and 14.x before 14.2.1 and Certified Asterisk 11.x before 11.6-cert16 and 13.x before 13.8-cert4. The chan_sip channel driver has a liberal definition for whitespace when attempting to strip the content between a SIP header name and a colon character. Rather than following RFC 3261 and stripping only spaces and horizontal tabs, Asterisk treats any non-printable ASCII character as if it were whitespace. This means that headers such as Contact\x01: will be seen as a valid Contact header. This mostly does not pose a problem until Asterisk is placed in tandem with an authenticating SIP proxy. In such a case, a crafty combination of valid and invalid To headers can cause a proxy to allow an INVITE request into Asterisk without authentication since it believes the request is an in-dialog request. However, because of the bug described above, the request will look like an out-of-dialog request to Asterisk. Asterisk will then process the request as a new call. The result is that Asterisk can process calls from unvetted sources without any authentication. If you do not use a proxy for authentication, then this issue does not affect you. If your proxy is dialog-aware (meaning that the proxy keeps track of what dialogs are currently valid), then this issue does not affect you. If you use chan_pjsip instead of chan_sip, then this issue does not affect you.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 3.0

Type: Primary
Base score: 5.3
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Severity: MEDIUM
CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:P/A:N
Weaknesses

nvd@nist.gov: CWE-285
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F53B8453-F35A-49BE-8129-774BADF71BA7"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.0.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCB0C07E-DA2F-4169-848D-C3315CDC1CB3"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.0.0:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "410C43E6-5912-4C22-A592-7CF94402EEB7"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.0.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D50A355E-1B55-4DD2-8100-EB81AA6FC40E"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.0.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9ADF4230-EFEB-45EC-9C96-0262B4A3E459"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5234531C-F69A-4B94-A480-147734206C5A"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "321C1066-6800-4488-A7C4-BE91FF738453"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9B51588-50A2-40B2-A007-06F57D38C7AA"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.1.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDE2B00C-6AC0-4166-8A25-EFC42CE7F737"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.1.0:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "617FC4AF-D152-4EE1-828D-C2A6AD0DFD3B"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A3FE6DC-17FD-4CEE-BDFB-9D4685640381"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CEEB6C2-0A6D-4434-8446-CB8605CD3B14"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F31715AF-5A35-4D0B-8E01-BB6E4CB7E02F"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.2.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1548C574-CD51-49F6-91B1-B06C504000E4"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.2.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D56C2C11-4B42-43AB-9DAE-61C15D107160"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BE4127D-8123-4408-86D3-08168A4501B9"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8836F348-66DF-43BC-9962-946018D13127"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12745DB9-F19D-4507-A9FE-218B7BB29DB3"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C689A32B-E87D-492F-B3F6-7B80DFA049C8"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "229B7982-9775-42AA-B8F5-FE920CCAA497"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8788AF7B-CBB6-4D9D-A748-486787935A96"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "868865A1-E074-4DB0-A119-D24C5C53FEF9"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B3D89C7-909F-419A-9EE8-A1F0D02934EF"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50EC8D9D-3483-4080-8000-496343BC8BFD"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24F62C78-2913-463F-B689-353AB2371E3F"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A70420A8-8571-4528-98E1-72BE00270C6E"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A276363F-F897-4E6D-9D55-5F5AA73DEE26"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB16D9D6-A2F6-4C4B-B364-1B63B1FFB5F0"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0F79D5F-EB28-417A-86DF-053D6EDBA161"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.10.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C92ECBCD-1EE3-498A-B3A4-22BF8EFD2EE7"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4EABFC3-24FA-4441-9F2B-650D90AE5CC6"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.12.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2026FD07-103C-4691-AFA4-88C490382F28"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.12.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65607103-4284-430A-8212-AC1DCFFFA778"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.13.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4061B4C7-8315-450C-866A-C4F3A6BCB1A1"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.13.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00099DC9-D437-429B-9D08-F0DFA4942A6C"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.14.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC6047FB-D1BD-4E21-B6BC-E51374C4B0E3"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.14.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89504BDC-82F7-4813-9C1E-456C9ACC6FB3"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.14.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "118C550E-79A8-431E-BADB-710EEEEDC6C7"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.15.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A62DFFE-637B-4911-B3B4-6DA4053CBDBE"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.15.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5DF6BC60-23F5-46A1-83F8-F4BCDEF196EF"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.16.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F7C5D35-A6AE-4A2E-98C5-CB58FF22AF08"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.17.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D23CE302-AC62-468C-96B3-1EF430825170"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.17.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9DCAA174-3CA3-49DB-BA19-D2BCF4F8953F"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.18.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD4D1A5A-99A3-4D23-B40C-BBE11EA5B325"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.19.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EFFAE3F-3B78-49DE-8F01-2E439D9A6F7C"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.20.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0501E88B-986A-44C6-A6B5-F2CB9087A8B5"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.21.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D3AF185-7AC6-491E-9BE0-8ECD163A3E77"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.21.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "400EA2E1-B178-467F-BBC2-1B2ECEDE662A"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.21.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E00A6C7-D3CF-40B5-A586-06E09C5AA1A3"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.22.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E25D043-EE0D-49A5-A468-03EDD9CFE0EC"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.22.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA17630B-444D-4AE4-B582-F8106C4EEFDB"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.23.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62A20D6B-62FE-440D-BC58-F764AAA5562B"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.23.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2AE880B-2FA2-42BB-BEBF-771E18FDA141"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.23.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC982D1B-B018-474E-94BE-2157C21276C7"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.24.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F26815C8-8E43-4C26-947B-986EFFF0ACE1"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.24.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03E8213E-650F-4C95-B9E5-753E7784EF5B"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:11.25.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00B8F794-A7F2-4B8F-B36C-55E61DC6939A"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B635C21-C193-43AF-A139-98604F324ABF"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.0.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E93A7967-9A04-424A-BDDB-A2B8289B9AC4"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.0.0:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F75C9FF-6F95-4F6A-B683-FE2BEDE3AD10"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.0.0:beta3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68226156-42ED-4F0E-93E1-02DD57E582B6"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB2C4E1E-6B90-4DCC-BC09-7D19FBA65C3F"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4EB385E-28B5-4259-9431-99E1F32D61B7"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58C0FF1B-6188-4181-A139-1806328762BD"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "121EACD3-D5E3-4691-8024-95996865BB65"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "136D6508-660E-410D-829A-7DD452BF8819"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74B23D17-7356-4D37-8C73-E87896D1335B"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5BA542E-4667-4D9E-BDAE-FED6CA63F99D"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83C8E7EC-0D4C-40E2-9EE1-4AB5F03464D4"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81A8A6CB-D236-4AB3-8476-C2D34DB7EF31"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "599833A2-CBE9-479B-8A6E-AF79C5EED1DB"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B870B3B7-E8DC-45A2-8FA4-657D005D00E3"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "707296C4-153C-4ACF-B91A-AB5FA42260CC"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "905722CB-4B6C-4849-88CD-22E972432E36"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C1C39FA-EF1A-4F2B-87A0-A00BAE73C6A7"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "677D1211-0B07-47B9-AB7A-E820E2B29561"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84202BAF-29E1-472B-B11F-B73F6A8891CF"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.8.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FFC7120D-E6A0-4801-A1CC-3E143896EE72"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BAF2A83D-D9AE-441D-8D4E-335BF9D28A63"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F5C1479-A540-4B7D-B00C-BD35EEC83BB4"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC12556C-5E82-47D7-87E5-FBDC01A920DD"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "461C1D2D-C4C1-4FF8-8231-38A2505F3523"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66595711-8573-4A9B-A8FE-4943E3097AA8"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.10.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D1FE3D4-A0B9-475A-9B89-B0222283A6A9"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9670B5AC-CBD1-484C-90F8-69B1A60B6054"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.11.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE5794B6-246C-415E-8E20-56447F152488"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.11.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E726CA39-A763-4422-B59E-E9E12518EA4D"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.12.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "206F1DC9-9E8F-4497-A354-4A14711993DC"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.12.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D428364-E2AD-4BC6-9329-71793BC0EB61"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.12.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08963910-E0BD-4487-B669-60E0BFA79863"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:13.13.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3BD16A9-24BC-4FC1-81BA-A6D1FEF38D35"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D413741-BDB7-496D-A01B-75E2A98FDB5B"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.0.0:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29130F7F-DE00-43E1-A4A6-8F1F95D5CB19"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.0.0:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25E94EC0-F577-4B2B-8B11-DC76278CDD42"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.0.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "101AD474-9B89-483D-84E8-08012677C55C"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.0.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D57E41F6-C2CF-4183-A78A-9531A88FB65D"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB1F9BB8-F951-427E-B770-69C2ACEBDB28"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C4CE405-E923-4C9C-849A-D1031C4DB493"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04ECDFF1-9718-4FAE-B45B-4F8CCA82829E"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2C4DA60-5701-4BD0-B2F9-D93B9E64111F"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B12834D-2AF1-4AD1-AB23-859CAA5D3210"
          },
          {
            "criteria": "cpe:2.3:a:digium:asterisk:14.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E39BAA74-50A8-4087-8FF8-7C5922121319"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F596E34-529A-41AD-AD51-C1D7EEE0FFF0"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.0.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC1BE0BB-A469-4DB6-88CF-80A065329C65"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.0.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EA68726-87EF-490F-BBB8-A321E6C7A16D"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C8B3572-D6F6-45BD-9BE4-D532F9BF134E"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.1.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7738E036-DACC-42EE-B417-CB083319B0A0"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.1.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6847720-D556-49D7-BD7F-E0559C6F5780"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.1.0:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BA81D724-584B-4863-B270-869C415DB5BE"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0344FE7-952A-4BC5-A31F-F2C5EABDB5FC"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.2.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00F26342-110F-4163-AD11-98AA3B71D299"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.2.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8652FA73-2F02-401C-890F-0544276294D3"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF76131B-DF2C-4C6A-8E6B-1319D231402D"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.3.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9AB8C209-694F-41BF-9CF2-D68D4E58A43C"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.3.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6438A881-C806-4CC1-9828-C34BBB0FF332"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2704EED6-C72D-427D-AD37-EBC4042CDD76"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.4.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF835684-26C6-4734-B586-D5DB4DF33072"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.4.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EB76BC0-2B72-495E-80FC-C6B194648A91"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.4.0:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F1BC546-92E0-4285-8C18-37705F44B94E"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D50F0DF-54D3-4883-ADA2-DDB79F786182"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.5.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0838BEC6-680A-4695-BD1B-309290F16A3B"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.5.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "82F78D49-ED8C-43FF-AE6D-713E90F1A1BE"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "322694EF-B086-4BE7-A9F0-41D3A9C245FF"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AD7C9B3-D029-4E05-8E80-3ADA904FAC1C"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1_rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "781AC882-80DD-4176-8E4F-220343B15F68"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1_rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "770CCEEA-B121-454B-BD36-3FC1B262998A"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert10:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB47EA31-CF9D-4752-804B-7804151EC87C"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert11:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1C9B744-1745-4E9D-A2DE-4659295508D2"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert12:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFFD88AD-C82E-4C5C-9C4F-8A49176E3E52"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert13:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6797C78B-BB9A-46B4-8F0B-492FB1988BB2"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert14:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10A38D53-6C8E-493E-8207-F4CF7D754A5D"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert15:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CC0C753-9179-4C71-AFD8-C4601D8C865A"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "013B1940-C45D-4FE2-8B49-D92B8F1A9048"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert2:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE71221B-4D55-4643-B6D1-307B2CF41F98"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A98B11B5-B8E2-4903-B4F7-3AC23751AE8F"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert3:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88124275-9BEB-4D53-9E4D-1AC8C52F2D0F"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert4:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F3CEFEF-72B6-4B58-81FE-01BCEEFB3013"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert5:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA637187-0EAE-4756-AD72-A0B2FABCA070"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert6:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6DAF6784-0B31-4104-9D85-473D5AFAB785"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert7:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77B06B83-D62C-4A0E-BE94-83C9A02CE55A"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert8:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAD17809-CBB1-4E41-99C9-20FE56853563"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert9:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "066453F2-A77F-4E82-8C91-AC17FAA21A89"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6.0:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6EE9895-FB94-451D-8701-8C0DD8F5BED0"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6.0:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCDDF5C2-9B45-4811-90F6-984EF4B220CF"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56849E34-B192-46A8-A517-C7C184A901B4"
          },
          {
            "criteria": "cpe:2.3:a:digium:certified_asterisk:11.6.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4610D544-156F-4E9A-BC46-9E0FF8D5D641"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References
