CVE-2017-17664
Description
A Remote Crash issue was discovered in Asterisk Open Source 13.x before 13.18.4, 14.x before 14.7.4, and 15.x before 15.1.4 and Certified Asterisk before 13.13-cert9. Certain compound RTCP packets cause a crash in the RTCP Stack.
Risk Information
Base Score
5.9
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.276
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| asterisk security update(DSA-4076-1) asterisk_11.13.1~dfsg-2+deb8u5_amd64.deb | Linux |
| asterisk security update(DSA-4076-1) asterisk_13.14.1~dfsg-2+deb9u3_i386.deb | Linux |
| asterisk security update(DSA-4076-1) asterisk_13.14.1~dfsg-2+deb9u3_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234