Known Vulnerabilities for Certified Asterisk by Digium

Listed below are 10 of the newest known vulnerabilities associated with "Certified Asterisk" by "Digium".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2021-32558	An issue was discovered in Sangoma Asterisk 13.x before 13.38.3, 16.x before 16.19.1, 17.x before 17.9.4, and 18.x before 18....	7.5 - HIGH	2021-07-30	2021-11-28
CVE-2021-26906	An issue was discovered in res_pjsip_session.c in Digium Asterisk through 13.38.1; 14.x, 15.x, and 16.x through 16.16.0; 17.x...	5.9 - MEDIUM	2021-02-18	2021-02-24
CVE-2021-26717	An issue was discovered in Sangoma Asterisk 16.x before 16.16.1, 17.x before 17.9.2, and 18.x before 18.2.1 and Certified Ast...	7.5 - HIGH	2021-02-18	2021-02-24
CVE-2021-26713	A stack-based buffer overflow in res_rtp_asterisk.c in Sangoma Asterisk before 16.16.1, 17.x before 17.9.2, and 18.x before 1...	6.5 - MEDIUM	2021-02-19	2021-02-26
CVE-2021-26712	Incorrect access controls in res_srtp.c in Sangoma Asterisk 13.38.1, 16.16.0, 17.9.1, and 18.2.0 and Certified Asterisk 16.8-...	7.5 - HIGH	2021-02-18	2021-02-24
CVE-2020-28327	A res_pjsip_session crash was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before 16.14.1, 17.x before 17.8.1...	5.3 - MEDIUM	2020-11-06	2020-11-20
CVE-2019-18610	An issue was discovered in manager.c in Sangoma Asterisk through 13.x, 16.x, 17.x and Certified Asterisk 13.21 through 13.21-...	8.8 - HIGH	2019-11-22	2022-06-03
CVE-2019-18351	REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-18790. Reason: This candidate is a duplicate of CVE-2019-...	Not Provided	2021-03-05	2023-11-07
CVE-2019-13161	An issue was discovered in Asterisk Open Source through 13.27.0, 14.x and 15.x through 15.7.2, and 16.x through 16.4.0, and C...	5.3 - MEDIUM	2019-07-12	2022-06-01
CVE-2019-12827	Buffer overflow in res_pjsip_messaging in Digium Asterisk versions 13.21-cert3, 13.27.0, 15.7.2, 16.4.0 and earlier allows re...	6.5 - MEDIUM	2019-07-12	2021-07-21

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Digium	Certified Asterisk	16.8	-	All	All
Application	Digium	Certified Asterisk	16.8	cert1-rc1	All	All
Application	Digium	Certified Asterisk	16.8	cert1-rc2	All	All
Application	Digium	Certified Asterisk	16.8	cert1-rc3	All	All
Application	Digium	Certified Asterisk	16.8	cert1-rc4	All	All
Application	Digium	Certified Asterisk	16.8	cert2	All	All
Application	Digium	Certified Asterisk	16.8	cert3	All	All
Application	Digium	Certified Asterisk	16.8	cert4	All	All
Application	Digium	Certified Asterisk	16.8	cert4-rc1	All	All
Application	Digium	Certified Asterisk	16.8	cert4-rc2	All	All
Application	Digium	Certified Asterisk	16.8	cert4-rc3	All	All
Application	Digium	Certified Asterisk	16.8	cert4-rc4	All	All
Application	Digium	Certified Asterisk	13.9.1	All	All	All
Application	Digium	Certified Asterisk	13.9.0	All	All	All
Application	Digium	Certified Asterisk	13.8.2	All	All	All
Application	Digium	Certified Asterisk	13.8.1	All	All	All
Application	Digium	Certified Asterisk	13.8.0	All	All	All
Application	Digium	Certified Asterisk	13.8.0	rc1	All	All
Application	Digium	Certified Asterisk	13.8	cert1	All	All
Application	Digium	Certified Asterisk	13.8	cert1	All	All

Results limited to 20 most recent known configurations