asterisk vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the asterisk package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
L CVE-2024-53566	<20.9.3-r1
L CVE-2024-42491	<20.9.3-r0
H CVE-2024-42365	<20.9.2-r0
H Buffer Overflow	<20.5.1-r0
M Race Condition	<20.5.1-r0
M Directory Traversal	<18.15.1-r0
H Arbitrary Code Injection	<18.2.2-r2
M Use After Free	<18.15.1-r0
M Out-of-bounds Write	<18.2.1-r0
M CVE-2024-35190	<20.8.1-r0
H CVE-2021-26712	<18.2.1-r0
H Directory Traversal	<20.5.1-r0
H CVE-2021-26717	<18.2.1-r0
M CVE-2020-35652	<18.1.1-r0
H Resource Exhaustion	<18.11.2-r0
C SQL Injection	<18.11.2-r0
H Missing Authorization	<16.6.2-r0
M Missing Authorization	<16.6.2-r0
H Improper Input Validation	<16.5.1-r0
M NULL Pointer Dereference	<16.5.1-r0
H Out-of-bounds Write	<18.15.1-r0
M Integer Overflow or Wraparound	<16.3.0-r0
M Improper Resource Shutdown or Release	<18.2.1-r0
C Server-Side Request Forgery (SSRF)	<18.11.2-r0
H Out-of-Bounds	<15.7.1-r0
M Buffer Overflow	<18.1.1-r0
M Improper Resource Shutdown or Release	<18.0.1-r0
M Out-of-Bounds	<16.4.1-r0