Vulnerabilities > Digium > Asterisk > 13.3.1

DATE CVE VULNERABILITY TITLE RISK
2017-11-09 CVE-2017-16671 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Digium Asterisk
A Buffer Overflow issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7.
network
low complexity
digium CWE-119
8.8
2017-04-17 CVE-2016-7551 Resource Management Errors vulnerability in multiple products
chain_sip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service (port exhaustion).
network
low complexity
digium debian CWE-399
7.5
2016-12-12 CVE-2016-9938 Improper Authorization vulnerability in Digium Asterisk
An issue was discovered in Asterisk Open Source 11.x before 11.25.1, 13.x before 13.13.1, and 14.x before 14.2.1 and Certified Asterisk 11.x before 11.6-cert16 and 13.x before 13.8-cert4.
network
low complexity
digium CWE-285
5.3