asterisk vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the asterisk package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
L CVE-2024-53566	<20.9.3-r1
L CVE-2024-42491	<20.9.3-r0
H CVE-2024-42365	<20.9.2-r0
H Buffer Overflow	<20.5.1-r0
M Race Condition	<20.5.1-r0
M Directory Traversal	<18.15.1-r0
H Arbitrary Code Injection	<18.2.2-r2
M Use After Free	<18.15.1-r0
M Out-of-bounds Write	<18.2.1-r0
L CVE-2024-35190	<20.8.1-r0
H CVE-2021-26712	<18.2.1-r0
H Directory Traversal	<20.5.1-r0
H CVE-2021-26717	<18.2.1-r0
M CVE-2020-35652	<18.1.1-r0
H Resource Exhaustion	<18.11.2-r0
C SQL Injection	<18.11.2-r0
H Missing Authorization	<16.6.2-r0
M Missing Authorization	<16.6.2-r0
H Improper Input Validation	<16.5.1-r0
M NULL Pointer Dereference	<16.5.1-r0
H Out-of-bounds Write	<18.15.1-r0
M Integer Overflow or Wraparound	<16.3.0-r0
M Improper Resource Shutdown or Release	<18.2.1-r0
C Server-Side Request Forgery (SSRF)	<18.11.2-r0
H Out-of-Bounds	<15.7.1-r0
M Buffer Overflow	<18.1.1-r0
M Improper Resource Shutdown or Release	<18.0.1-r0
M Out-of-Bounds	<16.4.1-r0