Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2019-15297

res_pjsip_t38 in Sangoma Asterisk 15.x before 15.7.4 and 16.x before 16.5.1 allows an attacker to trigger a crash by sending a declined stream in a response to a T.38 re-invite initiated by Asterisk. The crash occurs because of a NULL session media object dereference.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.3%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
Products affected by CVE-2019-15297
  • Digium » Asterisk » Version: 15.0.0
    cpe:2.3:a:digium:asterisk:15.0.0
  • Digium » Asterisk » Version: 15.1.0
    cpe:2.3:a:digium:asterisk:15.1.0
  • Digium » Asterisk » Version: 15.1.1
    cpe:2.3:a:digium:asterisk:15.1.1
  • Digium » Asterisk » Version: 15.1.2
    cpe:2.3:a:digium:asterisk:15.1.2
  • Digium » Asterisk » Version: 15.1.3
    cpe:2.3:a:digium:asterisk:15.1.3
  • Digium » Asterisk » Version: 15.1.4
    cpe:2.3:a:digium:asterisk:15.1.4
  • Digium » Asterisk » Version: 15.1.5
    cpe:2.3:a:digium:asterisk:15.1.5
  • Digium » Asterisk » Version: 15.2.0
    cpe:2.3:a:digium:asterisk:15.2.0
  • Digium » Asterisk » Version: 15.2.1
    cpe:2.3:a:digium:asterisk:15.2.1
  • Digium » Asterisk » Version: 15.2.2
    cpe:2.3:a:digium:asterisk:15.2.2
  • Digium » Asterisk » Version: 15.3.0
    cpe:2.3:a:digium:asterisk:15.3.0
  • Digium » Asterisk » Version: 15.4.0
    cpe:2.3:a:digium:asterisk:15.4.0
  • Digium » Asterisk » Version: 15.4.1
    cpe:2.3:a:digium:asterisk:15.4.1
  • Digium » Asterisk » Version: 15.5.0
    cpe:2.3:a:digium:asterisk:15.5.0
  • Digium » Asterisk » Version: 15.6.0
    cpe:2.3:a:digium:asterisk:15.6.0
  • Digium » Asterisk » Version: 15.6.1
    cpe:2.3:a:digium:asterisk:15.6.1
  • Digium » Asterisk » Version: 15.6.2
    cpe:2.3:a:digium:asterisk:15.6.2
  • Digium » Asterisk » Version: 15.7.0
    cpe:2.3:a:digium:asterisk:15.7.0
  • Digium » Asterisk » Version: 15.7.1
    cpe:2.3:a:digium:asterisk:15.7.1
  • Digium » Asterisk » Version: 15.7.2
    cpe:2.3:a:digium:asterisk:15.7.2
  • Digium » Asterisk » Version: 15.7.3
    cpe:2.3:a:digium:asterisk:15.7.3
  • Digium » Asterisk » Version: 16.0.0
    cpe:2.3:a:digium:asterisk:16.0.0
  • Digium » Asterisk » Version: 16.0.1
    cpe:2.3:a:digium:asterisk:16.0.1
  • Digium » Asterisk » Version: 16.1.0
    cpe:2.3:a:digium:asterisk:16.1.0
  • Digium » Asterisk » Version: 16.2.0
    cpe:2.3:a:digium:asterisk:16.2.0
  • Digium » Asterisk » Version: 16.2.1
    cpe:2.3:a:digium:asterisk:16.2.1
  • Digium » Asterisk » Version: 16.3.0
    cpe:2.3:a:digium:asterisk:16.3.0
  • Digium » Asterisk » Version: 16.4.0
    cpe:2.3:a:digium:asterisk:16.4.0
  • Digium » Asterisk » Version: 16.4.1
    cpe:2.3:a:digium:asterisk:16.4.1
  • Digium » Asterisk » Version: 16.5.0
    cpe:2.3:a:digium:asterisk:16.5.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved