← voltar
CVE-2019-18610

CVE-2019-18610

EPSS 29.6%
An issue was discovered in manager.c in Sangoma Asterisk through 13.x, 16.x, 17.x and Certified Asterisk 13.21 through 13.21-cert4. A remote authenticated Asterisk Manager Interface (AMI) user without system authorization could use a specially crafted Originate AMI request to execute arbitrary system commands.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://downloads.asterisk.org/pub/security/AST-2019-007.htmlhttps://lists.debian.org/debian-lts-announce/2019/11/msg00038.htmlhttps://lists.debian.org/debian-lts-announce/2022/04/msg00001.htmlhttps://www.asterisk.org/downloads/security-advisories