res_pjsip_t38 in Sangoma Asterisk 16.x before 16.16.2, 17.x before 17.9.3, and 18.x before 18.2.2, and Certified Asterisk before 16.8-cert7, allows an attacker to trigger a crash by sending an m=image line and zero port in a response to a T.38 re-invite initiated by Asterisk. This is a re-occurrence of the CVE-2019-15297 symptoms but not for exactly the same reason. The crash occurs because there is an append operation relative to the active topology, but this should instead be a replace operation.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| asterisk | certified_asterisk | - | - |
| asterisk | certified_asterisk | - | - |
| asterisk | certified_asterisk |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
13
Affected Products
6
References
asterisk / certified_asterisk
| - |
| - |
| asterisk | certified_asterisk | - | - |
| asterisk | certified_asterisk | - | - |
| asterisk | certified_asterisk | - | - |
| asterisk | certified_asterisk | - | - |
| digium | asterisk | 16.0.0 - 16.16.2 | - |
| digium | asterisk | 17.0.0 - 17.9.3 | - |
| digium | asterisk | 18.0.0 - 18.2.2 | - |
| debian | debian_linux | - | - |
| debian | debian_linux | - | - |
| debian | debian_linux | - | - |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability
Impact