Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2014-8415

Race condition in the chan_pjsip channel driver in Asterisk Open Source 12.x before 12.7.1 and 13.x before 13.0.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a cancel request for a SIP session with a queued action to (1) answer a session or (2) send ringing.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.1%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2014-8415
  • Digium » Asterisk » Version: 12.0.0
    cpe:2.3:a:digium:asterisk:12.0.0
  • Digium » Asterisk » Version: 12.1.0
    cpe:2.3:a:digium:asterisk:12.1.0
  • Digium » Asterisk » Version: 12.1.1
    cpe:2.3:a:digium:asterisk:12.1.1
  • Digium » Asterisk » Version: 12.2.0
    cpe:2.3:a:digium:asterisk:12.2.0
  • Digium » Asterisk » Version: 12.3.0
    cpe:2.3:a:digium:asterisk:12.3.0
  • Digium » Asterisk » Version: 12.3.1
    cpe:2.3:a:digium:asterisk:12.3.1
  • Digium » Asterisk » Version: 12.3.2
    cpe:2.3:a:digium:asterisk:12.3.2
  • Digium » Asterisk » Version: 12.4.0
    cpe:2.3:a:digium:asterisk:12.4.0
  • Digium » Asterisk » Version: 12.5.0
    cpe:2.3:a:digium:asterisk:12.5.0
  • Digium » Asterisk » Version: 12.5.1
    cpe:2.3:a:digium:asterisk:12.5.1
  • Digium » Asterisk » Version: 12.6.0
    cpe:2.3:a:digium:asterisk:12.6.0
  • Digium » Asterisk » Version: 12.6.1
    cpe:2.3:a:digium:asterisk:12.6.1
  • Digium » Asterisk » Version: 12.7.0
    cpe:2.3:a:digium:asterisk:12.7.0
  • Digium » Asterisk » Version: 13.0.0
    cpe:2.3:a:digium:asterisk:13.0.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved