Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2017-7617

Remote code execution can occur in Asterisk Open Source 13.x before 13.14.1 and 14.x before 14.3.1 and Certified Asterisk 13.13 before 13.13-cert3 because of a buffer overflow in a CDR user field, related to X-ClientCode in chan_sip, the CDR dialplan function, and the AMI Monitor action.

  • Published: Apr 10, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-7617
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 8.8
  • AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/Au:S/C:P/I:P/A:P

CWEs:

Software From Fixed in
digium / asterisk 13.1.0 13.1.0.x
digium / asterisk 13.1.0-rc2 13.1.0-rc2.x
digium / asterisk 13.2.1 13.2.1.x
digium / asterisk 14.3.0 14.3.0.x
digium / asterisk 13.8.0-rc1 13.8.0-rc1.x
digium / asterisk 14.2.1 14.2.1.x
digium / asterisk 13.7.0-rc1 13.7.0-rc1.x
digium / asterisk 13.7.0-rc2 13.7.0-rc2.x
digium / asterisk 13.7.1 13.7.1.x
digium / asterisk 13.1.0-rc1 13.1.0-rc1.x
digium / asterisk 13.12 13.12.x
digium / asterisk 13.1.1 13.1.1.x
digium / asterisk 14.02 14.02.x
digium / asterisk 13.4.0 13.4.0.x
digium / asterisk 14.0.0-beta1 14.0.0-beta1.x
digium / asterisk 13.2.0 13.2.0.x
digium / asterisk 13.3.2 13.3.2.x
digium / asterisk 13.0.1 13.0.1.x
digium / asterisk 14.1.1 14.1.1.x
digium / asterisk 13.10.0-rc1 13.10.0-rc1.x
digium / asterisk 13.10.0 13.10.0.x
digium / asterisk 13.6.0-rc1 13.6.0-rc1.x
digium / asterisk 13.2.0-rc1 13.2.0-rc1.x
digium / asterisk 13.8.0 13.8.0.x
digium / asterisk 13.0.0 13.0.0.x
digium / asterisk 13.11.1 13.11.1.x
digium / asterisk 13.11.0 13.11.0.x
digium / asterisk 13.9.0 13.9.0.x
digium / asterisk 13.12.0 13.12.0.x
digium / asterisk 14.0.0-rc1 14.0.0-rc1.x
digium / asterisk 13.8.1 13.8.1.x
digium / asterisk 13.12.2 13.12.2.x
digium / asterisk 13.0.0-beta1 13.0.0-beta1.x
digium / asterisk 14.2.0 14.2.0.x
digium / asterisk 14.0.0 14.0.0.x
digium / asterisk 14.1.2 14.1.2.x
digium / asterisk 13.13.0 13.13.0.x
digium / asterisk 14.0 14.0.x
digium / asterisk 13.9.1 13.9.1.x
digium / asterisk 14.0.2 14.0.2.x
digium / asterisk 14.0.0-rc2 14.0.0-rc2.x
digium / asterisk 13.0.2 13.0.2.x
digium / asterisk 13.7.2 13.7.2.x
digium / asterisk 13.4.0-rc1 13.4.0-rc1.x
digium / asterisk 13.3.0-rc1 13.3.0-rc1.x
digium / asterisk 13.11.2 13.11.2.x
digium / asterisk 14.0.0-beta2 14.0.0-beta2.x
digium / asterisk 14.0.1 14.0.1.x
digium / asterisk 13.13 13.13.x
digium / asterisk 13.12.1 13.12.1.x
digium / asterisk 14.1 14.1.x
digium / asterisk 13.5.0 13.5.0.x
digium / asterisk 13.8.2 13.8.2.x
digium / asterisk 13.0.0-beta3 13.0.0-beta3.x
digium / asterisk 13.14.0 13.14.0.x
digium / asterisk 14.1.0 14.1.0.x
digium / asterisk 14.01 14.01.x
digium / asterisk 13.5.0-rc1 13.5.0-rc1.x
digium / asterisk 14.2 14.2.x
digium / asterisk 13.0.0-beta2 13.0.0-beta2.x
digium / certified_asterisk - 13.13-cert2.x