CVE-2023-37457
Last modified
CVE-2023-37457 is a high-severity vulnerability rated 8.2/10 on the CVSS scale. Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; as well as ceritifed-asterisk 18.9-cert5 and prior, the 'update' functionality of the PJSIP_HEADER dialplan function can exceed the available buffer space for storing the new value of a header. EPSS estimates a 1.13% chance of exploitation in the next 30 days.
Description
Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; as well as ceritifed-asterisk 18.9-cert5 and prior, the 'update' functionality of the PJSIP_HEADER dialplan function can exceed the available buffer space for storing the new value of a header. By doing so this can overwrite memory or cause a crash. This is not externally exploitable, unless dialplan is explicitly written to update a header based on data from an outside source. If the 'update' functionality is not used the vulnerability does not occur. A patch is available at commit a1ca0268254374b515fa5992f01340f7717113fa.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Digium | Asterisk | <= 18.20.0 | — |
| Digium | Asterisk | >= 19.0.0, <= 20.5.0 | — |
| Digium | Asterisk | 21.0.0 | — |
| Sangoma | Certified Asterisk | 13.13.0 | — |
| Sangoma | Certified Asterisk | 16.8.0 | — |
| Sangoma | Certified Asterisk | 18.9 | Cert1 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-37457?
How severe is CVE-2023-37457?
How do I fix CVE-2023-37457?
Are you affected by CVE-2023-37457?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST