CVE-2016-7551
Last modified
CVE-2016-7551 is a vulnerability of currently unknown severity. chain_sip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service (port exhaustion).. EPSS estimates a 5.47% chance of exploitation in the next 30 days.
Description
chain_sip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service (port exhaustion).
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Digium | Asterisk | 11.0.0 | — |
| Digium | Asterisk | 11.0.1 | — |
| Digium | Asterisk | 11.0.2 | — |
| Digium | Asterisk | 11.1.0 | — |
| Digium | Asterisk | 11.1.1 | — |
| Digium | Asterisk | 11.1.2 | — |
| Digium | Asterisk | 11.2.0 | — |
| Digium | Asterisk | 11.2.1 | — |
| Digium | Asterisk | 11.2.2 | — |
| Digium | Asterisk | 11.3.0 | — |
| Digium | Asterisk | 11.4.0 | — |
| Digium | Asterisk | 11.5.0 | — |
| Digium | Asterisk | 11.5.1 | — |
| Digium | Asterisk | 11.6.0 | — |
| Digium | Asterisk | 11.6.1 | — |
| Digium | Asterisk | 11.7.0 | — |
| Digium | Asterisk | 11.8.0 | — |
| Digium | Asterisk | 11.8.1 | — |
| Digium | Asterisk | 11.9.0 | — |
| Digium | Asterisk | 11.10.0 | — |
| Digium | Asterisk | 11.10.1 | — |
| Digium | Asterisk | 11.10.2 | — |
| Digium | Asterisk | 11.11.0 | — |
| Digium | Asterisk | 11.12.0 | — |
| Digium | Asterisk | 11.12.1 | — |
| Digium | Asterisk | 11.13.0 | — |
| Digium | Asterisk | 11.13.1 | — |
| Digium | Asterisk | 11.14.0 | — |
| Digium | Asterisk | 11.14.1 | — |
| Digium | Asterisk | 11.14.2 | — |
| Digium | Asterisk | 11.15.0 | — |
| Digium | Asterisk | 11.15.1 | — |
| Digium | Asterisk | 11.16.0 | — |
| Digium | Asterisk | 11.17.0 | — |
| Digium | Asterisk | 11.17.1 | — |
| Digium | Asterisk | 11.18.0 | — |
| Digium | Asterisk | 11.19.0 | — |
| Digium | Asterisk | 11.20.0 | — |
| Digium | Asterisk | 11.21.0 | — |
| Digium | Asterisk | 11.21.1 | — |
| Digium | Asterisk | 11.21.2 | — |
| Digium | Asterisk | 11.22.0 | — |
| Digium | Asterisk | 11.23.0 | — |
| Digium | Asterisk | 13.0.0 | — |
| Digium | Asterisk | 13.0.1 | — |
| Digium | Asterisk | 13.0.2 | — |
| Digium | Asterisk | 13.1.0 | — |
| Digium | Asterisk | 13.1.1 | — |
| Digium | Asterisk | 13.2.0 | — |
| Digium | Asterisk | 13.2.1 | — |
Showing 50 of 71 affected configurations. See NVD for the full list.
References
- http://downloads.asterisk.org/pub/security/AST-2016-007.htmlMitigation, Vendor Advisory
- http://www.debian.org/security/2016/dsa-3700Third Party Advisory
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838832Issue Tracking, Patch, Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1374733Issue Tracking, Patch
- https://issues.asterisk.org/jira/browse/ASTERISK-26272Issue Tracking, Patch, Third Party Advisory
- http://downloads.asterisk.org/pub/security/AST-2016-007.htmlMitigation, Vendor Advisory
- http://www.debian.org/security/2016/dsa-3700Third Party Advisory
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838832Issue Tracking, Patch, Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1374733Issue Tracking, Patch
- https://issues.asterisk.org/jira/browse/ASTERISK-26272Issue Tracking, Patch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-7551?
How severe is CVE-2016-7551?
How do I fix CVE-2016-7551?
Are you affected by CVE-2016-7551?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST