Known Vulnerabilities for Asterisk by Sangoma
Listed below are 10 of the newest known vulnerabilities associated with "Asterisk" by "Sangoma".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59925 json | Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, long sequences of well-formed double-asterisk... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-57231 json | Podman is a tool for managing OCI containers and pods. From 1.8.1 until 5.8.4, a container image that contains a environment ... | Not Provided | 2026-06-26 | 2026-06-27 |
| CVE-2026-26978 json | FreePBX is an open source IP PBX. In versions below 16.0.71 and 17.0.6, the backup module does not properly sanitize data dur... | Not Provided | 2026-05-18 | 2026-05-18 |
| CVE-2026-6907 json | An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14. `django.middleware.cache.UpdateCacheMiddleware` erroneousl... | Not Provided | 2026-05-05 | 2026-05-06 |
| CVE-2022-42706 json | An issue was discovered in Sangoma Asterisk through 16.28, 17 and 18 through 18.14, 19 through 19.6, and certified through 18... | 4.9 - MEDIUM | 2022-12-05 | 2023-02-24 |
| CVE-2022-42705 json | A use-after-free in res_pjsip_pubsub.c in Sangoma Asterisk 16.28, 18.14, 19.6, and certified/18.9-cert2 may allow a remote au... | 6.5 - MEDIUM | 2022-12-05 | 2023-02-24 |
| CVE-2022-37325 json | In Sangoma Asterisk through 16.28.0, 17.x and 18.x through 18.14.0, and 19.x through 19.6.0, an incoming Setup message to add... | 6.5 - MEDIUM | 2022-12-05 | 2026-07-02 |
| CVE-2022-23608 json | PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols ... | 9.8 - CRITICAL | 2022-02-22 | 2023-08-30 |
| CVE-2022-21723 json | PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols ... | 9.1 - CRITICAL | 2022-01-27 | 2023-08-30 |
| CVE-2021-37706 json | PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols ... | 9.8 - CRITICAL | 2021-12-22 | 2023-08-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Sangoma | Asterisk | 18.2.1 | |||
| Application | Sangoma | Asterisk | 18.2.0 | |||
| Application | Sangoma | Asterisk | 18.2.0 | |||
| Application | Sangoma | Asterisk | 18.1.0 | |||
| Application | Sangoma | Asterisk | 18.1.0 | |||
| Application | Sangoma | Asterisk | 18.0.0 | |||
| Application | Sangoma | Asterisk | 17.9.2 | |||
| Application | Sangoma | Asterisk | 17.9.1 | |||
| Application | Sangoma | Asterisk | 17.9.0 | |||
| Application | Sangoma | Asterisk | 17.9.0 | |||
| Application | Sangoma | Asterisk | 17.8.0 | |||
| Application | Sangoma | Asterisk | 17.7.0 | |||
| Application | Sangoma | Asterisk | 17.6.0 | |||
| Application | Sangoma | Asterisk | 17.5.0 | |||
| Application | Sangoma | Asterisk | 17.4.0 | |||
| Application | Sangoma | Asterisk | 17.3.0 | |||
| Application | Sangoma | Asterisk | 17.2.0 | |||
| Application | Sangoma | Asterisk | 17.1.0 | |||
| Application | Sangoma | Asterisk | 17.0.0 | |||
| Application | Sangoma | Asterisk | 16.9.0 |