CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42491

Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.24.3, 20.9.3, and 21.4.3 of Asterisk and versions 18.9-cert12 and 20.7-cert2 of certified-asterisk, if Asterisk attempts to send a SIP request to a URI whose host portion starts with `.1` or `[.1]`, and res_resolver_unbound is loaded, Asterisk will crash with a SEGV. To receive a patch, users should upgrade to one of the following versions: 18.24.3, 20.9.3, 21.4.3, certified-18.9-cert12, certified-20.7-cert2. Two workarounds are available. Disable res_resolver_unbound by setting `noload = res_resolver_unbound.so` in modules.conf, or set `rewrite_contact = yes` on all PJSIP endpoints. NOTE: This may not be appropriate for all Asterisk configurations.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.4%

CVSS Severity

CVSS v3 Score 5.7

References

Products affected by CVE-2024-42491

Sangoma » Asterisk » Version: N/A

cpe:2.3:a:sangoma:asterisk:-
Sangoma » Asterisk » Version: 1.6.1

cpe:2.3:a:sangoma:asterisk:1.6.1
Sangoma » Asterisk » Version: 1.6.1.4

cpe:2.3:a:sangoma:asterisk:1.6.1.4
Sangoma » Asterisk » Version: 1.6.1.8

cpe:2.3:a:sangoma:asterisk:1.6.1.8
Sangoma » Asterisk » Version: 13.0.0

cpe:2.3:a:sangoma:asterisk:13.0.0
Sangoma » Asterisk » Version: 13.1.0

cpe:2.3:a:sangoma:asterisk:13.1.0
Sangoma » Asterisk » Version: 13.10.0

cpe:2.3:a:sangoma:asterisk:13.10.0
Sangoma » Asterisk » Version: 13.11.0

cpe:2.3:a:sangoma:asterisk:13.11.0
Sangoma » Asterisk » Version: 13.12.0

cpe:2.3:a:sangoma:asterisk:13.12.0
Sangoma » Asterisk » Version: 13.12.1

cpe:2.3:a:sangoma:asterisk:13.12.1
Sangoma » Asterisk » Version: 13.12.2

cpe:2.3:a:sangoma:asterisk:13.12.2
Sangoma » Asterisk » Version: 13.13.0

cpe:2.3:a:sangoma:asterisk:13.13.0
Sangoma » Asterisk » Version: 13.14.0

cpe:2.3:a:sangoma:asterisk:13.14.0
Sangoma » Asterisk » Version: 13.15.0

cpe:2.3:a:sangoma:asterisk:13.15.0
Sangoma » Asterisk » Version: 13.2.0

cpe:2.3:a:sangoma:asterisk:13.2.0
Sangoma » Asterisk » Version: 13.3.0

cpe:2.3:a:sangoma:asterisk:13.3.0
Sangoma » Asterisk » Version: 13.37.1

cpe:2.3:a:sangoma:asterisk:13.37.1
Sangoma » Asterisk » Version: 13.4.0

cpe:2.3:a:sangoma:asterisk:13.4.0
Sangoma » Asterisk » Version: 13.5.0

cpe:2.3:a:sangoma:asterisk:13.5.0
Sangoma » Asterisk » Version: 13.6.0

cpe:2.3:a:sangoma:asterisk:13.6.0
Sangoma » Asterisk » Version: 13.7.0

cpe:2.3:a:sangoma:asterisk:13.7.0
Sangoma » Asterisk » Version: 13.8.0

cpe:2.3:a:sangoma:asterisk:13.8.0
Sangoma » Asterisk » Version: 13.8.1

cpe:2.3:a:sangoma:asterisk:13.8.1
Sangoma » Asterisk » Version: 13.8.2

cpe:2.3:a:sangoma:asterisk:13.8.2
Sangoma » Asterisk » Version: 13.9.0

cpe:2.3:a:sangoma:asterisk:13.9.0
Sangoma » Asterisk » Version: 14.0.0

cpe:2.3:a:sangoma:asterisk:14.0.0
Sangoma » Asterisk » Version: 14.1.0

cpe:2.3:a:sangoma:asterisk:14.1.0
Sangoma » Asterisk » Version: 14.2.0

cpe:2.3:a:sangoma:asterisk:14.2.0
Sangoma » Asterisk » Version: 14.2.1

cpe:2.3:a:sangoma:asterisk:14.2.1
Sangoma » Asterisk » Version: 14.3.0

cpe:2.3:a:sangoma:asterisk:14.3.0
Sangoma » Asterisk » Version: 14.4.0

cpe:2.3:a:sangoma:asterisk:14.4.0
Sangoma » Asterisk » Version: 15.0.0

cpe:2.3:a:sangoma:asterisk:15.0.0
Sangoma » Asterisk » Version: 15.1.0

cpe:2.3:a:sangoma:asterisk:15.1.0
Sangoma » Asterisk » Version: 15.1.2

cpe:2.3:a:sangoma:asterisk:15.1.2
Sangoma » Asterisk » Version: 15.1.4

cpe:2.3:a:sangoma:asterisk:15.1.4
Sangoma » Asterisk » Version: 15.1.5

cpe:2.3:a:sangoma:asterisk:15.1.5
Sangoma » Asterisk » Version: 15.2.0

cpe:2.3:a:sangoma:asterisk:15.2.0
Sangoma » Asterisk » Version: 15.2.1

cpe:2.3:a:sangoma:asterisk:15.2.1
Sangoma » Asterisk » Version: 15.2.2

cpe:2.3:a:sangoma:asterisk:15.2.2
Sangoma » Asterisk » Version: 15.3.0

cpe:2.3:a:sangoma:asterisk:15.3.0
Sangoma » Asterisk » Version: 15.4.0

cpe:2.3:a:sangoma:asterisk:15.4.0
Sangoma » Asterisk » Version: 15.4.1

cpe:2.3:a:sangoma:asterisk:15.4.1
Sangoma » Asterisk » Version: 16.0.0

cpe:2.3:a:sangoma:asterisk:16.0.0
Sangoma » Asterisk » Version: 16.10.0

cpe:2.3:a:sangoma:asterisk:16.10.0
Sangoma » Asterisk » Version: 16.11.0

cpe:2.3:a:sangoma:asterisk:16.11.0
Sangoma » Asterisk » Version: 16.12.0

cpe:2.3:a:sangoma:asterisk:16.12.0
Sangoma » Asterisk » Version: 16.14.0

cpe:2.3:a:sangoma:asterisk:16.14.0
Sangoma » Asterisk » Version: 16.14.1

cpe:2.3:a:sangoma:asterisk:16.14.1
Sangoma » Asterisk » Version: 16.15.0

cpe:2.3:a:sangoma:asterisk:16.15.0
Sangoma » Asterisk » Version: 16.16.0

cpe:2.3:a:sangoma:asterisk:16.16.0
Sangoma » Asterisk » Version: 16.16.1

cpe:2.3:a:sangoma:asterisk:16.16.1
Sangoma » Asterisk » Version: 16.5.0

cpe:2.3:a:sangoma:asterisk:16.5.0
Sangoma » Asterisk » Version: 16.6.0

cpe:2.3:a:sangoma:asterisk:16.6.0
Sangoma » Asterisk » Version: 16.7.0

cpe:2.3:a:sangoma:asterisk:16.7.0
Sangoma » Asterisk » Version: 16.8.0

cpe:2.3:a:sangoma:asterisk:16.8.0
Sangoma » Asterisk » Version: 16.9.0

cpe:2.3:a:sangoma:asterisk:16.9.0
Sangoma » Asterisk » Version: 17.0.0

cpe:2.3:a:sangoma:asterisk:17.0.0
Sangoma » Asterisk » Version: 17.1.0

cpe:2.3:a:sangoma:asterisk:17.1.0
Sangoma » Asterisk » Version: 17.2.0

cpe:2.3:a:sangoma:asterisk:17.2.0
Sangoma » Asterisk » Version: 17.3.0

cpe:2.3:a:sangoma:asterisk:17.3.0
Sangoma » Asterisk » Version: 17.4.0

cpe:2.3:a:sangoma:asterisk:17.4.0
Sangoma » Asterisk » Version: 17.5.0

cpe:2.3:a:sangoma:asterisk:17.5.0
Sangoma » Asterisk » Version: 17.6.0

cpe:2.3:a:sangoma:asterisk:17.6.0
Sangoma » Asterisk » Version: 17.7.0

cpe:2.3:a:sangoma:asterisk:17.7.0
Sangoma » Asterisk » Version: 17.8.0

cpe:2.3:a:sangoma:asterisk:17.8.0
Sangoma » Asterisk » Version: 17.8.1

cpe:2.3:a:sangoma:asterisk:17.8.1
Sangoma » Asterisk » Version: 17.9.0

cpe:2.3:a:sangoma:asterisk:17.9.0
Sangoma » Asterisk » Version: 17.9.1

cpe:2.3:a:sangoma:asterisk:17.9.1
Sangoma » Asterisk » Version: 17.9.2

cpe:2.3:a:sangoma:asterisk:17.9.2
Sangoma » Asterisk » Version: 18.0.0

cpe:2.3:a:sangoma:asterisk:18.0.0
Sangoma » Asterisk » Version: 18.0.1

cpe:2.3:a:sangoma:asterisk:18.0.1
Sangoma » Asterisk » Version: 18.1.0

cpe:2.3:a:sangoma:asterisk:18.1.0
Sangoma » Asterisk » Version: 18.1.1

cpe:2.3:a:sangoma:asterisk:18.1.1
Sangoma » Asterisk » Version: 18.10.0

cpe:2.3:a:sangoma:asterisk:18.10.0
Sangoma » Asterisk » Version: 18.10.1

cpe:2.3:a:sangoma:asterisk:18.10.1
Sangoma » Asterisk » Version: 18.11.0

cpe:2.3:a:sangoma:asterisk:18.11.0
Sangoma » Asterisk » Version: 18.11.1

cpe:2.3:a:sangoma:asterisk:18.11.1
Sangoma » Asterisk » Version: 18.11.2

cpe:2.3:a:sangoma:asterisk:18.11.2
Sangoma » Asterisk » Version: 18.11.3

cpe:2.3:a:sangoma:asterisk:18.11.3
Sangoma » Asterisk » Version: 18.12.0

cpe:2.3:a:sangoma:asterisk:18.12.0
Sangoma » Asterisk » Version: 18.12.1

cpe:2.3:a:sangoma:asterisk:18.12.1
Sangoma » Asterisk » Version: 18.13.0

cpe:2.3:a:sangoma:asterisk:18.13.0
Sangoma » Asterisk » Version: 18.14.0

cpe:2.3:a:sangoma:asterisk:18.14.0
Sangoma » Asterisk » Version: 18.15.0

cpe:2.3:a:sangoma:asterisk:18.15.0
Sangoma » Asterisk » Version: 18.15.1

cpe:2.3:a:sangoma:asterisk:18.15.1
Sangoma » Asterisk » Version: 18.16.0

cpe:2.3:a:sangoma:asterisk:18.16.0
Sangoma » Asterisk » Version: 18.17.0

cpe:2.3:a:sangoma:asterisk:18.17.0
Sangoma » Asterisk » Version: 18.17.1

cpe:2.3:a:sangoma:asterisk:18.17.1
Sangoma » Asterisk » Version: 18.18.0

cpe:2.3:a:sangoma:asterisk:18.18.0
Sangoma » Asterisk » Version: 18.18.1

cpe:2.3:a:sangoma:asterisk:18.18.1
Sangoma » Asterisk » Version: 18.19.0

cpe:2.3:a:sangoma:asterisk:18.19.0
Sangoma » Asterisk » Version: 18.2.0

cpe:2.3:a:sangoma:asterisk:18.2.0
Sangoma » Asterisk » Version: 18.2.1

cpe:2.3:a:sangoma:asterisk:18.2.1
Sangoma » Asterisk » Version: 18.2.2

cpe:2.3:a:sangoma:asterisk:18.2.2
Sangoma » Asterisk » Version: 18.20.0

cpe:2.3:a:sangoma:asterisk:18.20.0
Sangoma » Asterisk » Version: 18.20.1

cpe:2.3:a:sangoma:asterisk:18.20.1
Sangoma » Asterisk » Version: 18.20.2

cpe:2.3:a:sangoma:asterisk:18.20.2
Sangoma » Asterisk » Version: 18.21.0

cpe:2.3:a:sangoma:asterisk:18.21.0
Sangoma » Asterisk » Version: 18.22.0

cpe:2.3:a:sangoma:asterisk:18.22.0
Sangoma » Asterisk » Version: 18.23.0

cpe:2.3:a:sangoma:asterisk:18.23.0
Sangoma » Asterisk » Version: 18.23.1

cpe:2.3:a:sangoma:asterisk:18.23.1
Sangoma » Asterisk » Version: 18.24.0

cpe:2.3:a:sangoma:asterisk:18.24.0
Sangoma » Asterisk » Version: 18.24.1

cpe:2.3:a:sangoma:asterisk:18.24.1
Sangoma » Asterisk » Version: 18.24.2

cpe:2.3:a:sangoma:asterisk:18.24.2
Sangoma » Asterisk » Version: 18.3.0

cpe:2.3:a:sangoma:asterisk:18.3.0
Sangoma » Asterisk » Version: 18.4.0

cpe:2.3:a:sangoma:asterisk:18.4.0
Sangoma » Asterisk » Version: 18.5.0

cpe:2.3:a:sangoma:asterisk:18.5.0
Sangoma » Asterisk » Version: 18.5.1

cpe:2.3:a:sangoma:asterisk:18.5.1
Sangoma » Asterisk » Version: 18.6.0

cpe:2.3:a:sangoma:asterisk:18.6.0
Sangoma » Asterisk » Version: 18.7.0

cpe:2.3:a:sangoma:asterisk:18.7.0
Sangoma » Asterisk » Version: 18.7.1

cpe:2.3:a:sangoma:asterisk:18.7.1
Sangoma » Asterisk » Version: 18.8.0

cpe:2.3:a:sangoma:asterisk:18.8.0
Sangoma » Asterisk » Version: 18.9.0

cpe:2.3:a:sangoma:asterisk:18.9.0
Sangoma » Asterisk » Version: 20.0.0

cpe:2.3:a:sangoma:asterisk:20.0.0
Sangoma » Asterisk » Version: 20.0.1

cpe:2.3:a:sangoma:asterisk:20.0.1
Sangoma » Asterisk » Version: 20.1.0

cpe:2.3:a:sangoma:asterisk:20.1.0
Sangoma » Asterisk » Version: 20.2.0

cpe:2.3:a:sangoma:asterisk:20.2.0
Sangoma » Asterisk » Version: 20.2.1

cpe:2.3:a:sangoma:asterisk:20.2.1
Sangoma » Asterisk » Version: 20.3.0

cpe:2.3:a:sangoma:asterisk:20.3.0
Sangoma » Asterisk » Version: 20.3.1

cpe:2.3:a:sangoma:asterisk:20.3.1
Sangoma » Asterisk » Version: 20.4.0

cpe:2.3:a:sangoma:asterisk:20.4.0
Sangoma » Asterisk » Version: 20.5.0

cpe:2.3:a:sangoma:asterisk:20.5.0
Sangoma » Asterisk » Version: 20.5.1

cpe:2.3:a:sangoma:asterisk:20.5.1
Sangoma » Asterisk » Version: 20.5.2

cpe:2.3:a:sangoma:asterisk:20.5.2
Sangoma » Asterisk » Version: 20.6.0

cpe:2.3:a:sangoma:asterisk:20.6.0
Sangoma » Asterisk » Version: 20.7.0

cpe:2.3:a:sangoma:asterisk:20.7.0
Sangoma » Asterisk » Version: 20.8.0

cpe:2.3:a:sangoma:asterisk:20.8.0
Sangoma » Asterisk » Version: 20.8.1

cpe:2.3:a:sangoma:asterisk:20.8.1
Sangoma » Asterisk » Version: 20.9.0

cpe:2.3:a:sangoma:asterisk:20.9.0
Sangoma » Asterisk » Version: 20.9.1

cpe:2.3:a:sangoma:asterisk:20.9.1
Sangoma » Asterisk » Version: 20.9.2

cpe:2.3:a:sangoma:asterisk:20.9.2
Sangoma » Asterisk » Version: 21.0.0

cpe:2.3:a:sangoma:asterisk:21.0.0
Sangoma » Asterisk » Version: 21.0.1

cpe:2.3:a:sangoma:asterisk:21.0.1
Sangoma » Asterisk » Version: 21.0.2

cpe:2.3:a:sangoma:asterisk:21.0.2
Sangoma » Asterisk » Version: 21.1.0

cpe:2.3:a:sangoma:asterisk:21.1.0
Sangoma » Asterisk » Version: 21.2.0

cpe:2.3:a:sangoma:asterisk:21.2.0
Sangoma » Asterisk » Version: 21.3.0

cpe:2.3:a:sangoma:asterisk:21.3.0
Sangoma » Asterisk » Version: 21.3.1

cpe:2.3:a:sangoma:asterisk:21.3.1
Sangoma » Asterisk » Version: 21.4.0

cpe:2.3:a:sangoma:asterisk:21.4.0
Sangoma » Asterisk » Version: 21.4.1

cpe:2.3:a:sangoma:asterisk:21.4.1
Sangoma » Asterisk » Version: 21.4.2

cpe:2.3:a:sangoma:asterisk:21.4.2
Sangoma » Asterisk » Version: 21.4.3

cpe:2.3:a:sangoma:asterisk:21.4.3
Sangoma » Certified Asterisk » Version: N/A

cpe:2.3:a:sangoma:certified_asterisk:-
Sangoma » Certified Asterisk » Version: 13.13.0

cpe:2.3:a:sangoma:certified_asterisk:13.13.0
Sangoma » Certified Asterisk » Version: 16.8

cpe:2.3:a:sangoma:certified_asterisk:16.8
Sangoma » Certified Asterisk » Version: 16.8.0

cpe:2.3:a:sangoma:certified_asterisk:16.8.0
Sangoma » Certified Asterisk » Version: 18.9

cpe:2.3:a:sangoma:certified_asterisk:18.9
Sangoma » Certified Asterisk » Version: 20.7

cpe:2.3:a:sangoma:certified_asterisk:20.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42491

Products

Pricing

Contact Us