{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2019-06-28T00:00:00", "descriptions": [{"lang": "en", "value": "An issue was discovered in Asterisk Open Source through 13.27.0, 14.x and 15.x through 15.7.2, and 16.x through 16.4.0, and Certified Asterisk through 13.21-cert3. A pointer dereference in chan_sip while handling SDP negotiation allows an attacker to crash Asterisk when handling an SDP answer to an outgoing T.38 re-invite. To exploit this vulnerability an attacker must cause the chan_sip module to send a T.38 re-invite request to them. Upon receipt, the attacker must send an SDP answer containing both a T.38 UDPTL stream and another media stream containing only a codec (which is not permitted according to the chan_sip configuration)."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-04-03T07:06:09", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://downloads.digium.com/pub/security/AST-2019-003.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://issues.asterisk.org/jira/browse/ASTERISK-28465"}, {"name": "[debian-lts-announce] 20191130 [SECURITY] [DLA 2017-1] asterisk security update", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00038.html"}, {"name": "[debian-lts-announce] 20220403 [SECURITY] [DLA 2969-1] asterisk security update", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00001.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-13161", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An issue was discovered in Asterisk Open Source through 13.27.0, 14.x and 15.x through 15.7.2, and 16.x through 16.4.0, and Certified Asterisk through 13.21-cert3. A pointer dereference in chan_sip while handling SDP negotiation allows an attacker to crash Asterisk when handling an SDP answer to an outgoing T.38 re-invite. To exploit this vulnerability an attacker must cause the chan_sip module to send a T.38 re-invite request to them. Upon receipt, the attacker must send an SDP answer containing both a T.38 UDPTL stream and another media stream containing only a codec (which is not permitted according to the chan_sip configuration)."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://downloads.digium.com/pub/security/AST-2019-003.html", "refsource": "CONFIRM", "url": "http://downloads.digium.com/pub/security/AST-2019-003.html"}, {"name": "https://issues.asterisk.org/jira/browse/ASTERISK-28465", "refsource": "CONFIRM", "url": "https://issues.asterisk.org/jira/browse/ASTERISK-28465"}, {"name": "[debian-lts-announce] 20191130 [SECURITY] [DLA 2017-1] asterisk security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00038.html"}, {"name": "[debian-lts-announce] 20220403 [SECURITY] [DLA 2969-1] asterisk security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00001.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2019-13161", "datePublished": "2019-07-12T19:24:37", "dateReserved": "2019-07-02T00:00:00", "dateUpdated": "2022-04-03T07:06:09", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:-:*:*:*:*:*:*", "matchCriteriaId": "93F2B062-09B4-44F1-87E4-6104B757B557", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:beta1:*:*:*:*:*:*", "matchCriteriaId": "F2877B09-B0B9-4AD4-906A-D40E25DDC4BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:beta2:*:*:*:*:*:*", "matchCriteriaId": "11AAE0EA-D7EB-4341-A412-FBCDC99565A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:beta3:*:*:*:*:*:*", "matchCriteriaId": "37F93124-25D9-44ED-B4AB-1B3552FCAB09", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:beta4:*:*:*:*:*:*", "matchCriteriaId": "E4CB22F6-9F63-427C-B2D2-7ABB9B4F7694", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:beta5:*:*:*:*:*:*", "matchCriteriaId": "758AB27B-7C40-41ED-9FC3-BE3D682EE48A", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "07D3186A-CD6F-432A-8653-4CFBA37B9864", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "746FB2E6-EF66-4EF3-946C-111FB7728EBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "91D933DB-06F7-45A4-A517-BFAEC82DDB7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "3AAB500F-8F0D-4534-B659-C495D1799913", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.0.0:rc5:*:*:*:*:*:*", "matchCriteriaId": "5F5C5156-CC72-4AB5-A927-E874199EBD8C", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.1.0:-:*:*:*:*:*:*", "matchCriteriaId": "AB912D4D-6BA4-4AEF-BBFD-EABFED240015", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.1.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "68C78C16-3807-4272-9B46-9D9AF5150879", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.2.0:-:*:*:*:*:*:*", "matchCriteriaId": "02E13D3A-B37B-4215-82E0-3FCE5E35B00A", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.2.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "BE0F93D1-7602-47AC-9ACE-AA850D7DFD23", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.3.0:-:*:*:*:*:*:*", "matchCriteriaId": "956BCED3-1818-4673-A0F4-E7F03F366D99", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.3.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "0B58ACCC-0255-46B1-8517-EDCD85AA0F35", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.3.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "A921B590-57C2-4E0A-B28B-D0E48F5E1B58", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.3.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "70F0AE7B-9E53-4E3B-AA9E-EAF7C4C31E1D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.4.0:-:*:*:*:*:*:*", "matchCriteriaId": "5DE6F187-7236-4622-BD62-1E5F0742B41B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.4.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "F70DDB6D-BE16-4375-87AE-E5E2B5862D17", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.4.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "6910E07C-3ACA-414F-B468-13E4BF9BE938", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.4.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "837A07D7-C2FD-4077-A0AD-AF2147E04B84", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.5.0:-:*:*:*:*:*:*", "matchCriteriaId": "B2A99209-E8C5-44E6-A8DA-7FC07FBA6D87", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.5.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "18985B4A-4C54-4EC6-9274-15E7DCFEC94D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.6.0:-:*:*:*:*:*:*", "matchCriteriaId": "48AE70AD-85BE-44DE-BC75-1690C27821B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.6.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "804F861A-81E1-45C5-A7D3-0E73770AC155", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.6.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "0AE503BD-F9BD-4396-B27D-184AE06F594D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.6.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "9CD9A213-27F7-410E-97B1-E7405B4FCECE", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.7.0:-:*:*:*:*:*:*", "matchCriteriaId": "10FFDE4F-0B30-43C3-9475-80259D5E9055", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.7.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "5F30E2AB-B354-4583-9D76-9DF1727407A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.7.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "DBDFE57E-EEBF-4722-B6D0-147F72018DE3", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.8.0:-:*:*:*:*:*:*", "matchCriteriaId": "902A2600-49A7-4013-A621-9EE94F1E8435", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.8.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "7021D54A-D443-492A-AE8C-62F2B85A1F37", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.8.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "B003CB5A-A95A-481F-B762-79C476829D81", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.8.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "84C8BB88-FBE3-4C82-9D53-E34AA7B6A73E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.8.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "F8037EB0-42FA-45BA-9E8E-D279432EC4CD", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.8.0:rc5:*:*:*:*:*:*", "matchCriteriaId": "E374559C-E550-4BB9-9682-9C4535EAE9A6", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.9.0:-:*:*:*:*:*:*", "matchCriteriaId": "FFFB7E8B-C963-4ACB-AE37-9E4938A5462E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.9.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "DF83EAD3-3CC1-4C1B-AAB8-0FE03BB67EC9", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.9.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "E3F75AF0-A4E0-425E-B707-ED1F58C9CC83", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.9.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "745EC4D8-5E19-48C8-8609-11A74DC18266", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.10.0:-:*:*:*:*:*:*", "matchCriteriaId": "F1871DC4-AA58-4C04-9D6A-4FF383C56405", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.10.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "F8560DBD-A70E-4033-AE2E-96DA373AB425", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.10.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "E08ECE50-3A53-45C1-8BEA-8B9E024E22F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.10.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "59C2E58B-EEB3-4E8D-940C-2DF846923B19", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.10.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "D40F2ADC-6F79-410F-9063-1354C15F0D8E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert:*:*:*:*:*:*", "matchCriteriaId": "C63C46CC-02E2-40AF-8281-F2FB5D89823A", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert1:*:*:*:*:*:*", "matchCriteriaId": "71BAF2A7-024D-475A-88C0-0F5ADE3CA286", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert10:*:*:*:*:*:*", "matchCriteriaId": "27E0B1E7-1DA3-47C4-AA2A-54D4C2C48A8D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert2:*:*:*:*:*:*", "matchCriteriaId": "82F91FE8-C320-466B-AF08-67319A00A2BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert3:*:*:*:*:*:*", "matchCriteriaId": "DCFF0E1C-B455-4C18-8AA1-10408234327B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert3-rc1:*:*:*:*:*:*", "matchCriteriaId": "05D19102-FF8D-439F-87E7-B1FE97C55F8E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert3-rc2:*:*:*:*:*:*", "matchCriteriaId": "8EC4CE45-1378-402C-8552-745B6414B9E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert4:*:*:*:*:*:*", "matchCriteriaId": "738F68B3-2C5E-4A09-8FF4-2D034ED0C54D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert5:*:*:*:*:*:*", "matchCriteriaId": "6A60C223-AD68-4BFF-91C1-2C7E9F727AA6", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert5-rc1:*:*:*:*:*:*", "matchCriteriaId": "0F97E946-8876-417D-9C49-D990A14CFBB4", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert5-rc2:*:*:*:*:*:*", "matchCriteriaId": "887F4341-84C2-40F6-BB7C-68DAFC3D188E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert6:*:*:*:*:*:*", "matchCriteriaId": "4C313F81-8B38-4845-B1C7-CBB23D7C99B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert7:*:*:*:*:*:*", "matchCriteriaId": "A08731AB-1E43-48B9-AB4C-0B06A34D0807", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert8:*:*:*:*:*:*", "matchCriteriaId": "5A4FBB03-4A60-4A34-855B-74C5079F7769", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert9:*:*:*:*:*:*", "matchCriteriaId": "66E97D3F-3AEB-40EB-87E7-18EC7A84F0CA", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11:cert9-rc1:*:*:*:*:*:*", "matchCriteriaId": "C5CBAA8C-29D9-468C-9FA3-CBC005793955", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11.0:-:*:*:*:*:*:*", "matchCriteriaId": "69E55195-84CC-46DB-9E49-DEB864DF0659", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "7F58B52D-9510-465F-8BFB-6896B4D36F5B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "59E72AD4-90BE-4C3B-B457-31FF193712FA", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.11.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "81EB266E-40BC-45EA-8EDB-4766011C460B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.12.0:-:*:*:*:*:*:*", "matchCriteriaId": "E23FCBC3-30EF-47BC-AEFE-073E84B6DBA7", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.12.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "5AB33EDF-29D7-4092-91FE-505B39D3E57B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.12.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "4F698874-028E-410B-90FE-FDD441F55C32", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.12.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "081DA344-7266-4D67-8B92-830F43B42CC9", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.13.0:-:*:*:*:*:*:*", "matchCriteriaId": "01851B4A-F7CB-4263-B06C-92D39A693530", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.13.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "6BB95638-D09F-4F02-9076-49BE93F2A407", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.13.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "6E2DD3AF-EF01-4A1A-AF9A-98575E36D088", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.14.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "163E8F93-432A-4F68-B309-7A38AE1A30FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.14.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "F53C384F-75DD-4A29-8907-BA95F08B1465", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:-:*:*:*:*:*:*", "matchCriteriaId": "6BB940E4-E612-4B27-9188-E794665191B8", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert1:*:*:*:*:*:*", "matchCriteriaId": "2365F1EE-16A4-4293-B80E-A51CD6A2F112", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert1-rc1:*:*:*:*:*:*", "matchCriteriaId": "6B7AE7FB-8170-41AD-9597-07335D36AE48", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert1-rc2:*:*:*:*:*:*", "matchCriteriaId": "9131FB32-E3F0-476C-A0D1-36E2101631D6", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert1-rc3:*:*:*:*:*:*", "matchCriteriaId": "5209356B-4A86-4C93-9D04-C66969F23BC2", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert1_rc1:*:*:*:*:*:*", "matchCriteriaId": "6952FFDE-92D0-4A75-AABB-113E6FAF5A31", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert1_rc2:*:*:*:*:*:*", "matchCriteriaId": "5735354A-CF57-4A9A-9607-169CE50E0655", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert1_rc3:*:*:*:*:*:*", "matchCriteriaId": "38E0B2C4-55EA-4712-8E75-24A5718F9FD9", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert2:*:*:*:*:*:*", "matchCriteriaId": "F087C546-FBCA-4D0D-A023-8F9384CD160C", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert3:*:*:*:*:*:*", "matchCriteriaId": "832F5503-6354-4E39-B927-3BA9606A372D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert4:*:*:*:*:*:*", "matchCriteriaId": "9E23AF8A-63B2-4597-8E78-A4672B0C44B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert5:*:*:*:*:*:*", "matchCriteriaId": "F76EA1D5-F5F3-49CE-9A73-20FA03C31F88", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert6:*:*:*:*:*:*", "matchCriteriaId": "593ED9E3-D56C-4336-976B-27D30EED658A", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.15:cert7:*:*:*:*:*:*", "matchCriteriaId": "9FBB5951-3D34-4808-BBC3-5402147FE6A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28:*:*:*:*:*:*:*", "matchCriteriaId": "9365B811-5620-42F0-9400-5EA49361D2B2", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28:cert1:*:*:lts:*:*:*", "matchCriteriaId": "E63726F0-3BC6-49E7-BDE9-71196B480149", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28:cert1-rc1:*:*:*:*:*:*", "matchCriteriaId": "536ECC06-D2DC-474F-AB44-7A8B16ADFC9C", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28:cert2:*:*:*:*:*:*", "matchCriteriaId": "6001EFB8-A539-4F3C-B9F3-7A513FA458BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28:cert2:*:*:lts:*:*:*", "matchCriteriaId": "677AB746-AE4F-46B0-BEE3-82A1FE77271F", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28:cert3:*:*:*:*:*:*", "matchCriteriaId": "1035C6D2-E8FD-4FFA-9AC7-17534609D68C", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28:cert4:*:*:*:*:*:*", "matchCriteriaId": "DBD12EE0-78F6-450F-9AD9-D64A55377D56", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28:cert5:*:*:*:*:*:*", "matchCriteriaId": "BFA21D5A-0BC6-45E0-AD84-F91F185275B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:1.8.28.0:*:*:*:lts:*:*:*", "matchCriteriaId": "C675C7BA-65E9-4A0A-9A6D-1EBCBEA1D718", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "4F596E34-529A-41AD-AD51-C1D7EEE0FFF0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.0.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "EC1BE0BB-A469-4DB6-88CF-80A065329C65", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.0.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "4EA68726-87EF-490F-BBB8-A321E6C7A16D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "1C8B3572-D6F6-45BD-9BE4-D532F9BF134E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.1.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "7738E036-DACC-42EE-B417-CB083319B0A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.1.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "A6847720-D556-49D7-BD7F-E0559C6F5780", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.1.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "BA81D724-584B-4863-B270-869C415DB5BE", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.2:cert1:*:*:*:*:*:*", "matchCriteriaId": "02317CB5-C06E-414B-96A3-255607A5DF93", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.2:cert1-rc2:*:*:*:*:*:*", "matchCriteriaId": "9F2FC5E1-6E2E-4C7A-A888-60FCA303CCC8", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.2:cert2:*:*:*:*:*:*", "matchCriteriaId": "08DEE3EC-63F3-45EB-947E-E8503DBD3669", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.2:cert3:*:*:*:*:*:*", "matchCriteriaId": "D68D79BE-8302-42D1-87C2-0F2CFF8B1796", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "CF76131B-DF2C-4C6A-8E6B-1319D231402D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.3.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "9AB8C209-694F-41BF-9CF2-D68D4E58A43C", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.3.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "6438A881-C806-4CC1-9828-C34BBB0FF332", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "2704EED6-C72D-427D-AD37-EBC4042CDD76", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.4.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "AF835684-26C6-4734-B586-D5DB4DF33072", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.4.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "4EB76BC0-2B72-495E-80FC-C6B194648A91", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.4.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "9F1BC546-92E0-4285-8C18-37705F44B94E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "9D50F0DF-54D3-4883-ADA2-DDB79F786182", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.5.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "0838BEC6-680A-4695-BD1B-309290F16A3B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.5.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "82F78D49-ED8C-43FF-AE6D-713E90F1A1BE", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1:*:*:*:*:*:*", "matchCriteriaId": "322694EF-B086-4BE7-A9F0-41D3A9C245FF", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1:*:*:lts:*:*:*", "matchCriteriaId": "6AD7C9B3-D029-4E05-8E80-3ADA904FAC1C", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1-rc1:*:*:*:*:*:*", "matchCriteriaId": "B178B8F1-4AF8-478A-B842-DD5047D65C9E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1-rc2:*:*:*:*:*:*", "matchCriteriaId": "E9D5545B-44D5-4872-8702-8D49579DE531", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1_rc1:*:*:*:*:*:*", "matchCriteriaId": "781AC882-80DD-4176-8E4F-220343B15F68", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert1_rc2:*:*:*:*:*:*", "matchCriteriaId": "770CCEEA-B121-454B-BD36-3FC1B262998A", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert10:*:*:*:*:*:*", "matchCriteriaId": "5CEBE67E-A3E5-4BC9-8740-4F51123CC9F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert11:*:*:*:*:*:*", "matchCriteriaId": "CD094E25-5E10-4564-9A4D-BE5A14C2815F", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert12:*:*:*:*:*:*", "matchCriteriaId": "B6873174-0109-402F-ADCA-B1635F441FD9", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert12:*:*:lts:*:*:*", "matchCriteriaId": "BFFD88AD-C82E-4C5C-9C4F-8A49176E3E52", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert13:*:*:*:*:*:*", "matchCriteriaId": "B529CD2F-2958-44E6-839A-3E4FE392B1F1", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert13:*:*:lts:*:*:*", "matchCriteriaId": "6797C78B-BB9A-46B4-8F0B-492FB1988BB2", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert14:*:*:*:*:*:*", "matchCriteriaId": "B961BF46-DEF7-4804-AF9A-D13F160FA213", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert14:*:*:lts:*:*:*", "matchCriteriaId": "10A38D53-6C8E-493E-8207-F4CF7D754A5D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert14-rc1:*:*:*:*:*:*", "matchCriteriaId": "5EE8689E-AF57-400D-B321-D3F66D1169FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert14-rc2:*:*:*:*:*:*", "matchCriteriaId": "5C55AA35-5E1C-4411-BC01-0FF9D1928EC5", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert15:*:*:*:*:*:*", "matchCriteriaId": "B9305CA8-835C-4DFF-9CD8-C1072BACED42", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert15:*:*:lts:*:*:*", "matchCriteriaId": "4CC0C753-9179-4C71-AFD8-C4601D8C865A", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert16:*:*:*:*:*:*", "matchCriteriaId": "B3729EA6-3949-4854-80D4-DC5587161FBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert17:*:*:*:*:*:*", "matchCriteriaId": "9A416C55-D670-4CCC-BEFE-12CB3438C81B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert18:*:*:*:*:*:*", "matchCriteriaId": "A79C0247-82DD-4EE7-80F6-9D3DCBB30FC4", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert2:*:*:*:*:*:*", "matchCriteriaId": "013B1940-C45D-4FE2-8B49-D92B8F1A9048", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert2:*:*:lts:*:*:*", "matchCriteriaId": "CE71221B-4D55-4643-B6D1-307B2CF41F98", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert3:*:*:*:*:*:*", "matchCriteriaId": "A98B11B5-B8E2-4903-B4F7-3AC23751AE8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert3:*:*:lts:*:*:*", "matchCriteriaId": "88124275-9BEB-4D53-9E4D-1AC8C52F2D0F", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert4:*:*:*:*:*:*", "matchCriteriaId": "C7D60B24-C509-49C3-87A9-49D05CB44183", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert4:*:*:lts:*:*:*", "matchCriteriaId": "4F3CEFEF-72B6-4B58-81FE-01BCEEFB3013", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert5:*:*:*:*:*:*", "matchCriteriaId": "3C1F9978-44E7-4D39-BEC6-5C6DB7F893E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert5:*:*:lts:*:*:*", "matchCriteriaId": "AA637187-0EAE-4756-AD72-A0B2FABCA070", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert6:*:*:*:*:*:*", "matchCriteriaId": "69BA61A8-2A95-4800-BB4E-692BA4321A84", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert6:*:*:lts:*:*:*", "matchCriteriaId": "6DAF6784-0B31-4104-9D85-473D5AFAB785", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert7:*:*:*:*:*:*", "matchCriteriaId": "C481D8B0-622D-491D-B292-717B0369B507", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert7:*:*:lts:*:*:*", "matchCriteriaId": "77B06B83-D62C-4A0E-BE94-83C9A02CE55A", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert8:*:*:*:*:*:*", "matchCriteriaId": "BC8390D4-F339-43FF-9F2B-71331D4ECB81", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert8:*:*:lts:*:*:*", "matchCriteriaId": "CAD17809-CBB1-4E41-99C9-20FE56853563", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6:cert9:*:*:*:*:*:*", "matchCriteriaId": "4490B76B-FA41-43DB-9A31-6B3F220F1907", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6.0:*:*:*:lts:*:*:*", "matchCriteriaId": "D6EE9895-FB94-451D-8701-8C0DD8F5BED0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6.0:-:*:*:*:*:*:*", "matchCriteriaId": "CCDDF5C2-9B45-4811-90F6-984EF4B220CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "56849E34-B192-46A8-A517-C7C184A901B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:11.6.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "4610D544-156F-4E9A-BC46-9E0FF8D5D641", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert1:*:*:*:*:*:*", "matchCriteriaId": "0C6CF412-290C-4524-9AFE-D58A85183864", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert1-rc1:*:*:*:*:*:*", "matchCriteriaId": "8A9D3C5C-627E-43A3-89C2-95F7B8803361", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert1-rc3:*:*:*:*:*:*", "matchCriteriaId": "5060CAED-EEAB-4AD1-B964-F6538499BF73", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert2:*:*:*:*:*:*", "matchCriteriaId": "BA3211EE-E305-4247-AA2E-910E48CBCDF2", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert3:*:*:*:*:*:*", "matchCriteriaId": "61816D1A-D952-4E4F-B5DD-3B7A94BD8596", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert3-rc1:*:*:*:*:*:*", "matchCriteriaId": "6B4693A3-86BC-4368-AFDA-B0E323776957", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert4:*:*:*:*:*:*", "matchCriteriaId": "4D1D0689-E276-47DD-B51A-C221F12C60A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert5:*:*:*:*:*:*", "matchCriteriaId": "8433CB3B-56BA-4674-AC2B-813A7F3EDEC5", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert6:*:*:*:*:*:*", "matchCriteriaId": "9E1066C8-8A7E-487B-8D9B-DD4A55A5C5EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert7:*:*:*:*:*:*", "matchCriteriaId": "3C1A0AE4-EA01-445E-89AE-1A9734478994", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1:cert8:*:*:*:*:*:*", "matchCriteriaId": "4497BD45-DFC5-4729-98CD-20C94BC20C70", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "9F68ED1E-8D2B-4AEE-B5DE-FD50338BA82D", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "EA9F296A-4932-4EA4-8B38-80856A9D6374", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.1.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "B40673A6-2980-440A-B78E-D5C7095E3FA6", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert1:*:*:*:*:*:*", "matchCriteriaId": "38E19C8E-9FD6-4A44-81C6-EEC91BC2CB58", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert1-rc2:*:*:*:*:*:*", "matchCriteriaId": "3C7605A6-380F-44E8-81A1-5BDAEBFFB0A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert1-rc3:*:*:*:*:*:*", "matchCriteriaId": "43DB632E-C528-40E3-8EB0-AA6A7476657C", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert1_rc1:*:*:*:*:*:*", "matchCriteriaId": "2016E8F9-542D-46CE-905D-3CBAF97A24A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert1_rc2:*:*:*:*:*:*", "matchCriteriaId": "CC283754-B316-4BCE-8EEB-63CAFE68D601", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert1_rc3:*:*:*:*:*:*", "matchCriteriaId": "9D111448-7C39-4A6D-B492-B3D3DCEA8424", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert2:*:*:*:*:*:*", "matchCriteriaId": "6267CC33-3961-4D9A-899B-4F34BAD64067", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert2-rc1:*:*:*:*:*:*", "matchCriteriaId": "0CCF7282-A16F-499E-B607-929F346A85A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert2_rc1:*:*:*:*:*:*", "matchCriteriaId": "A52E12AB-99CA-4A34-A0CA-E8B511636A5E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert3:*:*:*:*:*:*", "matchCriteriaId": "ACFD2F39-957E-42CE-8016-21314F432335", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8:cert4:*:*:*:*:*:*", "matchCriteriaId": "22E13F7F-1D64-4248-84F2-C6E89A2FC977", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "BDB08CB2-8FB4-4738-9B67-C27273A78025", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.8.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "1E36EFEF-670E-4659-A887-D497D4AA8223", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert1-rc1:*:*:*:*:*:*", "matchCriteriaId": "BED18370-B09E-44D8-8E84-1B0DCDF81864", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert1-rc2:*:*:*:*:*:*", "matchCriteriaId": "2F2F88BE-10E5-4C21-B67B-1AC264921663", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert1-rc3:*:*:*:*:*:*", "matchCriteriaId": "0742A842-254A-4008-9D77-D0A810110841", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert1-rc4:*:*:*:*:*:*", "matchCriteriaId": "06396597-A5D1-4C30-B07F-E989E322733E", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert2:*:*:*:*:*:*", "matchCriteriaId": "6447B77F-3770-4703-9188-B7344ED98E94", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert3:*:*:*:*:*:*", "matchCriteriaId": "5C103924-1D61-4090-8ED5-4731371B2B2C", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert4:*:*:*:*:*:*", "matchCriteriaId": "08F87B09-3867-4CAE-BAD7-2206CD6CAF97", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert5:*:*:*:*:*:*", "matchCriteriaId": "0D12B31E-C30C-442A-9BD8-504CF7EB1321", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert6:*:*:*:*:*:*", "matchCriteriaId": "B43DA484-83DC-4489-9037-B85B845078E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert7:*:*:*:*:*:*", "matchCriteriaId": "D8740005-0BCF-4B76-A600-25A9BF0F3C42", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert8:*:*:*:*:*:*", "matchCriteriaId": "4298EEE5-3F0E-4227-ACF8-CEE18868055F", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13:cert9:*:*:*:*:*:*", "matchCriteriaId": "AC42C2B5-4F5F-4D5E-9240-9F104BBB5D55", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.13-cert2:*:*:*:*:*:*:*", "matchCriteriaId": "FDC2D03A-A47C-4211-8FAA-D357E9B98EFD", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.18:cert1:*:*:*:*:*:*", "matchCriteriaId": "05795EED-0473-4806-A9AD-FD92212CCC77", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.18:cert1-rc1:*:*:*:*:*:*", "matchCriteriaId": "538C22F0-4DC4-463E-950C-3594E2935B78", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.18:cert1-rc2:*:*:*:*:*:*", "matchCriteriaId": "3C3D4786-5B7C-4F8B-9EBE-1C13599EC906", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.18:cert1-rc3:*:*:*:*:*:*", "matchCriteriaId": "03C662D2-48CF-41DD-BE6B-C2A961C32D13", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.18:cert2:*:*:*:*:*:*", "matchCriteriaId": "C3F701AA-E842-4680-9747-000C3A4F6E4B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.18:cert3:*:*:*:*:*:*", "matchCriteriaId": "4B0FC294-F910-491B-9DEF-9FFEACA208C7", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.18:cert4:*:*:*:*:*:*", "matchCriteriaId": "B69E9C34-4F57-4948-9D53-0856E00F7949", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.21:cert1:*:*:*:*:*:*", "matchCriteriaId": "B7EE2BD3-51DC-4DA5-A5F2-6275F5277BE7", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.21:cert1-rc1:*:*:*:*:*:*", "matchCriteriaId": "DC85AF18-A304-4BD8-AFAA-F99AC37A799B", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.21:cert1-rc2:*:*:*:*:*:*", "matchCriteriaId": "03094F8E-FF0C-4831-A50F-B601949FD3BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.21:cert2:*:*:*:*:*:*", "matchCriteriaId": "6A7B650A-4785-4A8B-BCB6-1B630A0E18E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:certified_asterisk:13.21:cert3:*:*:*:*:*:*", "matchCriteriaId": "6B791DBB-EB45-4E9C-9C57-249D196EC0E5", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*", "matchCriteriaId": "E2404213-CAA0-4E84-9D73-7DC8D7DCB558", "versionEndExcluding": "13.27.1", "versionStartIncluding": "13.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*", "matchCriteriaId": "C7B32887-22B1-4B06-A18D-0C8B690CA699", "versionEndExcluding": "15.7.3", "versionStartIncluding": "15.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*", "matchCriteriaId": "6B58771D-C37A-487D-8B82-C63F7F45E217", "versionEndExcluding": "16.4.1", "versionStartIncluding": "16.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in Asterisk Open Source through 13.27.0, 14.x and 15.x through 15.7.2, and 16.x through 16.4.0, and Certified Asterisk through 13.21-cert3. A pointer dereference in chan_sip while handling SDP negotiation allows an attacker to crash Asterisk when handling an SDP answer to an outgoing T.38 re-invite. To exploit this vulnerability an attacker must cause the chan_sip module to send a T.38 re-invite request to them. Upon receipt, the attacker must send an SDP answer containing both a T.38 UDPTL stream and another media stream containing only a codec (which is not permitted according to the chan_sip configuration)."}, {"lang": "es", "value": "Se detect\u00f3 un problema en Asterisk Open Source hasta versiones 13.27.0, 14.x y 15.x hasta 15.7.2, y versiones 16.x hasta 16.4.0, y Certified Asterisk hasta versi\u00f3n 13.21-cert3. Una desreferencia de puntero en chan_sip durante el manejo de la negociaci\u00f3n SDP permite a un atacante bloquear Asterisk cuando maneja una respuesta SDP en una re-invitaci\u00f3n T.38 saliente. Para explotar esta vulnerabilidad un atacante debe hacer que el m\u00f3dulo chan_sip les env\u00ede una petici\u00f3n de re-invitaci\u00f3n T.38. Una vez recibida, el atacante debe enviar una respuesta SDP que contenga tanto un flujo UDPTL T.38 como otro flujo multimedia que contenga solo un c\u00f3dec (lo que no est\u00e1 permitido de acuerdo a la configuraci\u00f3n de chan_sip)."}], "id": "CVE-2019-13161", "lastModified": "2022-06-01T19:58:13.673", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 3.5, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-07-12T20:15:11.127", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://downloads.digium.com/pub/security/AST-2019-003.html"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://issues.asterisk.org/jira/browse/ASTERISK-28465"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2019/11/msg00038.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00001.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-476"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}