Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2015-1558

Asterisk Open Source 12.x before 12.8.1 and 13.x before 13.1.1, when using the PJSIP channel driver, does not properly reclaim RTP ports, which allows remote authenticated users to cause a denial of service (file descriptor consumption) via an SDP offer containing only incompatible codecs.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.175
EPSS Ranking 94.8%
CVSS Severity
CVSS v2 Score 3.5
Products affected by CVE-2015-1558
  • Digium » Asterisk » Version: 12.0.0
    cpe:2.3:a:digium:asterisk:12.0.0
  • Digium » Asterisk » Version: 12.1.0
    cpe:2.3:a:digium:asterisk:12.1.0
  • Digium » Asterisk » Version: 12.1.1
    cpe:2.3:a:digium:asterisk:12.1.1
  • Digium » Asterisk » Version: 12.2.0
    cpe:2.3:a:digium:asterisk:12.2.0
  • Digium » Asterisk » Version: 12.3.0
    cpe:2.3:a:digium:asterisk:12.3.0
  • Digium » Asterisk » Version: 12.3.1
    cpe:2.3:a:digium:asterisk:12.3.1
  • Digium » Asterisk » Version: 12.3.2
    cpe:2.3:a:digium:asterisk:12.3.2
  • Digium » Asterisk » Version: 12.4.0
    cpe:2.3:a:digium:asterisk:12.4.0
  • Digium » Asterisk » Version: 12.5.0
    cpe:2.3:a:digium:asterisk:12.5.0
  • Digium » Asterisk » Version: 12.6.0
    cpe:2.3:a:digium:asterisk:12.6.0
  • Digium » Asterisk » Version: 12.7.0
    cpe:2.3:a:digium:asterisk:12.7.0
  • Digium » Asterisk » Version: 12.8.0
    cpe:2.3:a:digium:asterisk:12.8.0
  • Digium » Asterisk » Version: 12.8.1
    cpe:2.3:a:digium:asterisk:12.8.1
  • Digium » Asterisk » Version: 13.0.0
    cpe:2.3:a:digium:asterisk:13.0.0
  • Digium » Asterisk » Version: 13.1.0
    cpe:2.3:a:digium:asterisk:13.1.0
  • Digium » Asterisk » Version: 13.2.0
    cpe:2.3:a:digium:asterisk:13.2.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved