Lucene search
Veracode Vulnerability DatabaseVERACODE:34970HistoryApr 05, 2022 - 8:10 a.m.
Access Restriction Bypass
2022-04-0508:10:17
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
asterisk
sip
access restriction
bypass
vulnerable
software
hijacked
ip address
EPSS
0.006
Percentile
79.1%
asterisk:stretch is vulnerable to access restriction bypass. A SIP request can be sent to Asterisk that can change a SIP peer’s IP address. A REGISTER does not need to occur, and calls can be hijacked as a result.
Related
alpinelinux
alpinelinux
CVE-2019-18790
2019-11-22 17:15:11
freebsd
freebsd
asterisk -- SIP request can change address of a SIP peer
2019-10-17 00:00:00
nessus
nessus
debiancve
debiancve
CVE-2019-18790
2019-11-22 17:15:11
cve
cve
CVE-2019-18790
2019-11-22 17:15:11
CVE-2019-18351
2021-03-05 02:15:12
cvelist
cvelist
CVE-2019-18790
2019-11-22 16:22:55
osv
osv
CVE-2019-18790
2019-11-22 17:15:11
asterisk - security update
2019-11-30 00:00:00
asterisk - security update
2022-04-03 00:00:00
symantec
symantec
Multiple Asterisk Products CVE-2019-18790 Authorization Bypass Vulnerability
2019-11-21 00:00:00
ubuntucve
ubuntucve
CVE-2019-18790
2019-11-22 00:00:00
nvd
nvd
CVE-2019-18790
2019-11-22 17:15:11
CVE-2019-18351
2021-03-05 02:15:12
prion
prion
Authentication flaw
2019-11-22 17:15:00
openvas
openvas
Asterisk Multiple Vulnerabilities (AST-2019-006, AST-2019-007)
2019-11-22 00:00:00
Debian: Security Advisory (DLA-2017-1)
2019-12-01 00:00:00
Debian: Security Advisory (DLA-2969-1)
2022-04-04 00:00:00
redhatcve
redhatcve
CVE-2019-18351
2022-05-20 22:45:58
debian
debian
[SECURITY] [DLA 2017-1] asterisk security update
2019-11-30 20:56:56
[SECURITY] [DLA 2969-1] asterisk security update
2022-04-03 05:56:53