{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","type":"deb","namespace":"debian","name":"asterisk","version":"1:1.2.13~dfsg-2","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"1:22.9.0+dfsg+~cs6.16.60671434-1","latest_non_vulnerable_version":"1:22.9.0+dfsg+~cs6.16.60671434-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59047?format=json","vulnerability_id":"VCID-13m8-y787-fqb7","summary":"An issue was discovered in Sangoma Asterisk 16.x before 16.16.1, 17.x before 17.9.2, and 18.x before 18.2.1 and Certified Asterisk before 16.8-cert6. When re-negotiating for T.38, if the initial remote response was delayed just enough, Asterisk would send both audio and T.38 in the SDP. If this happened, and the remote responded with a declined T.38 stream, then Asterisk would crash.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-26717","reference_id":"","reference_type":"","scores":[{"value":"0.00421","scoring_system":"epss","scoring_elements":"0.62346","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00421","scoring_system":"epss","scoring_elements":"0.62392","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00421","scoring_system":"epss","scoring_elements":"0.624","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00421","scoring_system":"epss","scoring_elements":"0.6239","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00421","scoring_system":"epss","scoring_elements":"0.62375","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00421","scoring_system":"epss","scoring_elements":"0.62389","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-26717"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26717","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26717"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983157","reference_id":"983157","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983157"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-26717"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-13m8-y787-fqb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58982?format=json","vulnerability_id":"VCID-18ap-sn7u-s3hd","summary":"An issue was discovered in chan_skinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chan_skinny (aka SCCP protocol) channel driver is flooded with certain requests, it can cause the asterisk process to use excessive amounts of virtual memory, eventually causing asterisk to stop processing requests of any kind.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-17090","reference_id":"","reference_type":"","scores":[{"value":"0.80582","scoring_system":"epss","scoring_elements":"0.99157","published_at":"2026-06-04T12:55:00Z"},{"value":"0.80582","scoring_system":"epss","scoring_elements":"0.99158","published_at":"2026-06-07T12:55:00Z"},{"value":"0.80582","scoring_system":"epss","scoring_elements":"0.99159","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-17090"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17090","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17090"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883342","reference_id":"883342","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883342"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/43992.py","reference_id":"CVE-2017-17090;AST-2017-01","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/43992.py"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271615?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-17090"],"risk_score":1.4,"exploitability":"2.0","weighted_severity":"0.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-18ap-sn7u-s3hd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58886?format=json","vulnerability_id":"VCID-1fd7-cjxx-wbdv","summary":"Asterisk Open Source 1.6.0.x before 1.6.0.22, 1.6.1.x before 1.6.1.14, and 1.6.2.x before 1.6.2.2, and Business Edition C.3 before C.3.3.2, allows remote attackers to cause a denial of service (daemon crash) via an SIP T.38 negotiation with an SDP FaxMaxDatagram field that is (1) missing, (2) modified to contain a negative number, or (3) modified to contain a large number.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0441.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0441.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0441","reference_id":"","reference_type":"","scores":[{"value":"0.03526","scoring_system":"epss","scoring_elements":"0.87864","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03526","scoring_system":"epss","scoring_elements":"0.87885","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03526","scoring_system":"epss","scoring_elements":"0.87887","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03526","scoring_system":"epss","scoring_elements":"0.87889","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03526","scoring_system":"epss","scoring_elements":"0.87902","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0441"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0441","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0441"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=561332","reference_id":"561332","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=561332"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2010-0441"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1fd7-cjxx-wbdv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58854?format=json","vulnerability_id":"VCID-1tk1-rue9-6ug2","summary":"The IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denial of service (crash) via a crafted (1) LAGRQ or (2) LAGRP frame that contains information elements of IAX frames, which results in a NULL pointer dereference when Asterisk does not properly set an associated variable.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3763","reference_id":"","reference_type":"","scores":[{"value":"0.25182","scoring_system":"epss","scoring_elements":"0.96292","published_at":"2026-06-04T12:55:00Z"},{"value":"0.25182","scoring_system":"epss","scoring_elements":"0.96296","published_at":"2026-06-05T12:55:00Z"},{"value":"0.25182","scoring_system":"epss","scoring_elements":"0.96299","published_at":"2026-06-08T12:55:00Z"},{"value":"0.25182","scoring_system":"epss","scoring_elements":"0.96304","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3763"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/4249.rb","reference_id":"CVE-2007-3763","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/4249.rb"},{"reference_url":"https://security.gentoo.org/glsa/200802-11","reference_id":"GLSA-200802-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200802-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-3763"],"risk_score":0.4,"exploitability":"2.0","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1tk1-rue9-6ug2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59055?format=json","vulnerability_id":"VCID-1vcu-q5ry-5fac","summary":"An issue was discovered in Sangoma Asterisk 13.x before 13.38.3, 16.x before 16.19.1, 17.x before 17.9.4, and 18.x before 18.5.1, and Certified Asterisk before 16.8-cert10. If the IAX2 channel driver receives a packet that contains an unsupported media format, a crash can occur.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32558","reference_id":"","reference_type":"","scores":[{"value":"0.02875","scoring_system":"epss","scoring_elements":"0.86546","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02875","scoring_system":"epss","scoring_elements":"0.86569","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02875","scoring_system":"epss","scoring_elements":"0.86564","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02875","scoring_system":"epss","scoring_elements":"0.86553","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02875","scoring_system":"epss","scoring_elements":"0.86566","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32558"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32558"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32686","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32686"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991710","reference_id":"991710","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991710"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-32558"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1vcu-q5ry-5fac"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58892?format=json","vulnerability_id":"VCID-1vcu-s8ab-8ua7","summary":"tcptls.c in the TCP/TLS server in Asterisk Open Source 1.6.1.x before 1.6.1.23, 1.6.2.x before 1.6.2.17.1, and 1.8.x before 1.8.3.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) by establishing many short TCP sessions to services that use a certain TLS API.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1175","reference_id":"","reference_type":"","scores":[{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.52072","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.52132","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.52142","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.52122","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.5209","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00284","scoring_system":"epss","scoring_elements":"0.5211","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1175"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1175","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1175"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-1175"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1vcu-s8ab-8ua7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58936?format=json","vulnerability_id":"VCID-1vug-1t5p-pug9","summary":"The (1) VoIP channel drivers, (2) DUNDi, and (3) Asterisk Manager Interface (AMI) in Asterisk Open Source 1.8.x before 1.8.32.1, 11.x before 11.14.1, 12.x before 12.7.1, and 13.x before 13.0.1 and Certified Asterisk 1.8.28 before 1.8.28-cert3 and 11.6 before 11.6-cert8 allows remote attackers to bypass the ACL restrictions via a packet with a source IP that does not share the address family as the first ACL entry.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8412","reference_id":"","reference_type":"","scores":[{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69763","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69801","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.6981","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.6979","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00597","scoring_system":"epss","scoring_elements":"0.69812","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8412"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8412","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8412"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771463","reference_id":"771463","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771463"},{"reference_url":"https://security.gentoo.org/glsa/201412-51","reference_id":"GLSA-201412-51","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-51"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2014-8412"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1vug-1t5p-pug9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58883?format=json","vulnerability_id":"VCID-1z85-kfv8-8bgg","summary":"asterisk allows calls on prohibited networks","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3723","reference_id":"","reference_type":"","scores":[{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.71301","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.71345","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.71352","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.71331","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.71315","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00653","scoring_system":"epss","scoring_elements":"0.7134","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3723"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=552756","reference_id":"552756","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=552756"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2009-3723"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1z85-kfv8-8bgg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58848?format=json","vulnerability_id":"VCID-1zx2-1zmc-cfc2","summary":"Multiple stack-based buffer overflows in the process_sdp function in chan_sip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long (1) T38FaxRateManagement or (2) T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP INVITE.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2293","reference_id":"","reference_type":"","scores":[{"value":"0.49577","scoring_system":"epss","scoring_elements":"0.97854","published_at":"2026-06-04T12:55:00Z"},{"value":"0.49577","scoring_system":"epss","scoring_elements":"0.97858","published_at":"2026-06-05T12:55:00Z"},{"value":"0.49577","scoring_system":"epss","scoring_elements":"0.97859","published_at":"2026-06-09T12:55:00Z"},{"value":"0.49577","scoring_system":"epss","scoring_elements":"0.9786","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2293"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/29900.txt","reference_id":"CVE-2007-2293;OSVDB-35368","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/29900.txt"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/29901.txt","reference_id":"CVE-2007-2293;OSVDB-35368","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/29901.txt"},{"reference_url":"https://www.securityfocus.com/bid/23648/info","reference_id":"CVE-2007-2293;OSVDB-35368","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/23648/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-2293"],"risk_score":0.8,"exploitability":"2.0","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1zx2-1zmc-cfc2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58959?format=json","vulnerability_id":"VCID-25c9-w334-gbdn","summary":"chain_sip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service (port exhaustion).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-7551","reference_id":"","reference_type":"","scores":[{"value":"0.0663","scoring_system":"epss","scoring_elements":"0.91359","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0663","scoring_system":"epss","scoring_elements":"0.91373","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0663","scoring_system":"epss","scoring_elements":"0.91374","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0663","scoring_system":"epss","scoring_elements":"0.9137","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0663","scoring_system":"epss","scoring_elements":"0.91365","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0663","scoring_system":"epss","scoring_elements":"0.9138","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-7551"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7551","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7551"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838832","reference_id":"838832","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838832"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271615?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2016-7551"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-25c9-w334-gbdn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59088?format=json","vulnerability_id":"VCID-29xh-xmhv-3ffs","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.11.1 and prior, there are various cases where it is possible that certain incoming RTP/RTCP packets can potentially cause out-of-bound read access. This issue affects all users that use PJMEDIA and accept incoming RTP/RTCP. A patch is available as a commit in the `master` branch. There are no known workarounds.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21722","reference_id":"","reference_type":"","scores":[{"value":"0.00462","scoring_system":"epss","scoring_elements":"0.64514","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00462","scoring_system":"epss","scoring_elements":"0.64557","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00462","scoring_system":"epss","scoring_elements":"0.64566","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00462","scoring_system":"epss","scoring_elements":"0.64554","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00462","scoring_system":"epss","scoring_elements":"0.64543","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00462","scoring_system":"epss","scoring_elements":"0.64562","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://github.com/pjsip/pjproject/commit/22af44e68a0c7d190ac1e25075e1382f77e9397a","reference_id":"22af44e68a0c7d190ac1e25075e1382f77e9397a","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:54Z/"}],"url":"https://github.com/pjsip/pjproject/commit/22af44e68a0c7d190ac1e25075e1382f77e9397a"},{"reference_url":"https://www.debian.org/security/2022/dsa-5285","reference_id":"dsa-5285","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:54Z/"}],"url":"https://www.debian.org/security/2022/dsa-5285"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-m66q-q64c-hv36","reference_id":"GHSA-m66q-q64c-hv36","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:54Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-m66q-q64c-hv36"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:54Z/"}],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:54Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html","reference_id":"msg00035.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:54Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:54Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-21722"],"risk_score":4.1,"exploitability":"0.5","weighted_severity":"8.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-29xh-xmhv-3ffs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59090?format=json","vulnerability_id":"VCID-34d5-vz5m-mqc5","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions 2.11.1 and prior, parsing an incoming SIP message that contains a malformed multipart can potentially cause out-of-bound read access. This issue affects all PJSIP users that accept SIP multipart. The patch is available as commit in the `master` branch. There are no known workarounds.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21723","reference_id":"","reference_type":"","scores":[{"value":"0.00468","scoring_system":"epss","scoring_elements":"0.64846","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00468","scoring_system":"epss","scoring_elements":"0.64888","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00468","scoring_system":"epss","scoring_elements":"0.64898","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00468","scoring_system":"epss","scoring_elements":"0.64887","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00468","scoring_system":"epss","scoring_elements":"0.64876","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00468","scoring_system":"epss","scoring_elements":"0.64893","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://github.com/pjsip/pjproject/commit/077b465c33f0aec05a49cd2ca456f9a1b112e896","reference_id":"077b465c33f0aec05a49cd2ca456f9a1b112e896","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"https://github.com/pjsip/pjproject/commit/077b465c33f0aec05a49cd2ca456f9a1b112e896"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"http://seclists.org/fulldisclosure/2022/Mar/2","reference_id":"2","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"http://seclists.org/fulldisclosure/2022/Mar/2"},{"reference_url":"http://packetstormsecurity.com/files/166227/Asterisk-Project-Security-Advisory-AST-2022-006.html","reference_id":"Asterisk-Project-Security-Advisory-AST-2022-006.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"http://packetstormsecurity.com/files/166227/Asterisk-Project-Security-Advisory-AST-2022-006.html"},{"reference_url":"https://www.debian.org/security/2022/dsa-5285","reference_id":"dsa-5285","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"https://www.debian.org/security/2022/dsa-5285"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-7fw8-54cv-r7pm","reference_id":"GHSA-7fw8-54cv-r7pm","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-7fw8-54cv-r7pm"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html","reference_id":"msg00035.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:57:51Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-21723"],"risk_score":4.1,"exploitability":"0.5","weighted_severity":"8.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-34d5-vz5m-mqc5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58938?format=json","vulnerability_id":"VCID-3a1q-j5qj-rbfk","summary":"ConfBridge in Asterisk 11.x before 11.14.1 and Certified Asterisk 11.6 before 11.6-cert8 does not properly handle state changes, which allows remote attackers to cause a denial of service (channel hang and memory consumption) by causing transitions to be delayed, which triggers a state change from hung up to waiting for media.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8414","reference_id":"","reference_type":"","scores":[{"value":"0.01902","scoring_system":"epss","scoring_elements":"0.83581","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01902","scoring_system":"epss","scoring_elements":"0.83605","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01902","scoring_system":"epss","scoring_elements":"0.83606","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01902","scoring_system":"epss","scoring_elements":"0.83602","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01902","scoring_system":"epss","scoring_elements":"0.83595","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01902","scoring_system":"epss","scoring_elements":"0.83608","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8414"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8414","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8414"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771463","reference_id":"771463","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771463"},{"reference_url":"https://security.gentoo.org/glsa/201412-51","reference_id":"GLSA-201412-51","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-51"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2014-8414"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3a1q-j5qj-rbfk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58890?format=json","vulnerability_id":"VCID-3jqh-ryws-53ht","summary":"Multiple stack-based and heap-based buffer overflows in the (1) decode_open_type and (2) udptl_rx_packet functions in main/udptl.c in Asterisk Open Source 1.4.x before 1.4.39.2, 1.6.1.x before 1.6.1.22, 1.6.2.x before 1.6.2.16.2, and 1.8 before 1.8.2.4; Business Edition C.x.x before C.3.6.3; AsteriskNOW 1.5; and s800i (Asterisk Appliance), when T.38 support is enabled, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted UDPTL packet.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1147","reference_id":"","reference_type":"","scores":[{"value":"0.0342","scoring_system":"epss","scoring_elements":"0.87666","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0342","scoring_system":"epss","scoring_elements":"0.87687","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0342","scoring_system":"epss","scoring_elements":"0.87689","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0342","scoring_system":"epss","scoring_elements":"0.87688","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0342","scoring_system":"epss","scoring_elements":"0.877","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1147"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=614580","reference_id":"614580","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=614580"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-1147"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3jqh-ryws-53ht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58972?format=json","vulnerability_id":"VCID-3q36-jek6-wked","summary":"In Asterisk 11.x before 11.25.2, 13.x before 13.17.1, and 14.x before 14.6.1 and Certified Asterisk 11.x before 11.6-cert17 and 13.x before 13.13-cert5, unauthorized command execution is possible. The app_minivm module has an \"externnotify\" program configuration option that is executed by the MinivmNotify dialplan application. The application uses the caller-id name and number as part of a built string passed to the OS shell for interpretation and execution. Since the caller-id name and number can come from an untrusted source, a crafted caller-id name or number allows an arbitrary shell command injection.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-14100","reference_id":"","reference_type":"","scores":[{"value":"0.33558","scoring_system":"epss","scoring_elements":"0.97026","published_at":"2026-06-04T12:55:00Z"},{"value":"0.33558","scoring_system":"epss","scoring_elements":"0.97029","published_at":"2026-06-05T12:55:00Z"},{"value":"0.33558","scoring_system":"epss","scoring_elements":"0.97031","published_at":"2026-06-06T12:55:00Z"},{"value":"0.33558","scoring_system":"epss","scoring_elements":"0.97033","published_at":"2026-06-08T12:55:00Z"},{"value":"0.33558","scoring_system":"epss","scoring_elements":"0.97036","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-14100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14100"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873908","reference_id":"873908","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873908"},{"reference_url":"https://security.gentoo.org/glsa/201710-29","reference_id":"GLSA-201710-29","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-29"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271615?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-14100"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3q36-jek6-wked"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58897?format=json","vulnerability_id":"VCID-3ypw-ky7u-auf4","summary":"chan_iax2.c in the IAX2 channel driver in Asterisk Open Source 1.4.x before 1.4.41.1, 1.6.2.x before 1.6.2.18.1, and 1.8.x before 1.8.4.3, and Asterisk Business Edition C.3 before C.3.7.3, accesses a memory address contained in an option control frame, which allows remote attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a crafted frame.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2535","reference_id":"","reference_type":"","scores":[{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.39342","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.39429","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.39434","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.39405","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.39376","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0018","scoring_system":"epss","scoring_elements":"0.3939","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2535"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2535","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2535"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631448","reference_id":"631448","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631448"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-2535"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3ypw-ky7u-auf4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58899?format=json","vulnerability_id":"VCID-49c5-8sng-rfd9","summary":"reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.3 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a SIP packet with a Contact header that lacks a < (less than) character.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2665","reference_id":"","reference_type":"","scores":[{"value":"0.02315","scoring_system":"epss","scoring_elements":"0.85077","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02315","scoring_system":"epss","scoring_elements":"0.85101","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02315","scoring_system":"epss","scoring_elements":"0.85105","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02315","scoring_system":"epss","scoring_elements":"0.85099","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02315","scoring_system":"epss","scoring_elements":"0.85089","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02315","scoring_system":"epss","scoring_elements":"0.85103","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2665","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2665"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631445","reference_id":"631445","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631445"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-2665"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-49c5-8sng-rfd9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58888?format=json","vulnerability_id":"VCID-4r9d-zq25-qkhv","summary":"main/acl.c in Asterisk Open Source 1.6.0.x before 1.6.0.25, 1.6.1.x before 1.6.1.17, and 1.6.2.x before 1.6.2.5 does not properly enforce remote host access controls when CIDR notation \"/0\" is used in permit= and deny= configuration rules, which causes an improper arithmetic shift and might allow remote attackers to bypass ACL rules and access services from unauthorized hosts.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-1224","reference_id":"","reference_type":"","scores":[{"value":"0.01","scoring_system":"epss","scoring_elements":"0.77341","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01","scoring_system":"epss","scoring_elements":"0.7737","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01","scoring_system":"epss","scoring_elements":"0.7738","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01","scoring_system":"epss","scoring_elements":"0.77369","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01","scoring_system":"epss","scoring_elements":"0.77359","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01","scoring_system":"epss","scoring_elements":"0.77381","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-1224"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1224","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1224"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576560","reference_id":"576560","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576560"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2010-1224"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4r9d-zq25-qkhv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58885?format=json","vulnerability_id":"VCID-4u5u-18fg-gke4","summary":"rtp.c in Asterisk Open Source 1.2.x before 1.2.37, 1.4.x before 1.4.27.1, 1.6.0.x before 1.6.0.19, and 1.6.1.x before 1.6.1.11; Business Edition B.x.x before B.2.5.13, C.2.x.x before C.2.4.6, and C.3.x.x before C.3.2.3; and s800i 1.3.x before 1.3.0.6 allows remote attackers to cause a denial of service (daemon crash) via an RTP comfort noise payload with a long data length.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-4055","reference_id":"","reference_type":"","scores":[{"value":"0.00524","scoring_system":"epss","scoring_elements":"0.6728","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00524","scoring_system":"epss","scoring_elements":"0.67322","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00524","scoring_system":"epss","scoring_elements":"0.67329","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00524","scoring_system":"epss","scoring_elements":"0.67316","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00524","scoring_system":"epss","scoring_elements":"0.673","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00524","scoring_system":"epss","scoring_elements":"0.67315","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-4055"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4055","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4055"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559103","reference_id":"559103","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559103"},{"reference_url":"https://security.gentoo.org/glsa/201006-20","reference_id":"GLSA-201006-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-20"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2009-4055"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4u5u-18fg-gke4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58846?format=json","vulnerability_id":"VCID-4ujk-8wc9-uufu","summary":"The channel driver in Asterisk before 1.2.17 and 1.4.x before 1.4.2 allows remote attackers to cause a denial of service (crash) via a SIP INVITE message with an SDP containing one valid and one invalid IP address.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1561","reference_id":"","reference_type":"","scores":[{"value":"0.20671","scoring_system":"epss","scoring_elements":"0.95702","published_at":"2026-06-04T12:55:00Z"},{"value":"0.20671","scoring_system":"epss","scoring_elements":"0.95707","published_at":"2026-06-05T12:55:00Z"},{"value":"0.20671","scoring_system":"epss","scoring_elements":"0.95711","published_at":"2026-06-06T12:55:00Z"},{"value":"0.20671","scoring_system":"epss","scoring_elements":"0.95713","published_at":"2026-06-08T12:55:00Z"},{"value":"0.20671","scoring_system":"epss","scoring_elements":"0.95716","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1561"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1561","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1561"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=415466","reference_id":"415466","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=415466"},{"reference_url":"https://security.gentoo.org/glsa/200704-01","reference_id":"GLSA-200704-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200704-01"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/3566.pl","reference_id":"OSVDB-34479;CVE-2007-1561","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/3566.pl"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-1561"],"risk_score":0.4,"exploitability":"2.0","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4ujk-8wc9-uufu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59036?format=json","vulnerability_id":"VCID-4ysp-qqgf-7ubg","summary":"An issue was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before 16.14.1, 17.x before 17.8.1, and 18.x before 18.0.1 and Certified Asterisk before 16.8-cert5. If Asterisk is challenged on an outbound INVITE and the nonce is changed in each response, Asterisk will continually send INVITEs in a loop. This causes Asterisk to consume more and more memory since the transaction will never terminate (even if the call is hung up), ultimately leading to a restart or shutdown of Asterisk. Outbound authentication must be configured on the endpoint for this to occur.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-28242","reference_id":"","reference_type":"","scores":[{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61466","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61514","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61521","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61509","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61492","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00407","scoring_system":"epss","scoring_elements":"0.61512","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-28242"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28242","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28242"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=974713","reference_id":"974713","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=974713"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2020-28242"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4ysp-qqgf-7ubg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59105?format=json","vulnerability_id":"VCID-551t-n4qb-p3hq","summary":"PJSIP is a free and open source multimedia communication library written in the C language. Versions 2.12 and prior contain a denial-of-service vulnerability that affects PJSIP users that consume PJSIP's XML parsing in their apps. Users are advised to update. There are no known workarounds.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24763","reference_id":"","reference_type":"","scores":[{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.80754","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.80781","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.80783","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.8078","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.80776","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01399","scoring_system":"epss","scoring_elements":"0.80796","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976","reference_id":"1014976","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-24763"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-551t-n4qb-p3hq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58877?format=json","vulnerability_id":"VCID-58kk-nrpx-m3h5","summary":"Unspecified vulnerability in Prototype JavaScript framework (prototypejs) before 1.6.0.2 allows attackers to make \"cross-site ajax requests\" via unknown vectors.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-7220.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-7220.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-7220","reference_id":"","reference_type":"","scores":[{"value":"0.10024","scoring_system":"epss","scoring_elements":"0.93198","published_at":"2026-06-04T12:55:00Z"},{"value":"0.10024","scoring_system":"epss","scoring_elements":"0.93209","published_at":"2026-06-05T12:55:00Z"},{"value":"0.10024","scoring_system":"epss","scoring_elements":"0.93208","published_at":"2026-06-06T12:55:00Z"},{"value":"0.10024","scoring_system":"epss","scoring_elements":"0.93205","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10024","scoring_system":"epss","scoring_elements":"0.93203","published_at":"2026-06-08T12:55:00Z"},{"value":"0.10024","scoring_system":"epss","scoring_elements":"0.9321","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-7220"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7220","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7220"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=523277","reference_id":"523277","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=523277"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555220","reference_id":"555220","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555220"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555221","reference_id":"555221","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555221"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555242","reference_id":"555242","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555242"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555244","reference_id":"555244","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555244"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555250","reference_id":"555250","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555250"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555255","reference_id":"555255","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555255"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555259","reference_id":"555259","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555259"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555266","reference_id":"555266","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555266"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=558977","reference_id":"558977","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=558977"},{"reference_url":"https://security.gentoo.org/glsa/201006-20","reference_id":"GLSA-201006-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-20"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2008-7220"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-58kk-nrpx-m3h5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58851?format=json","vulnerability_id":"VCID-5vzn-5rbf-e3hb","summary":"The Prototype (prototypejs) framework before 1.5.1 RC3 exchanges data using JavaScript Object Notation (JSON) without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and captures the data using other JavaScript code, aka \"JavaScript Hijacking.\"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2383.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2383.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2383","reference_id":"","reference_type":"","scores":[{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49749","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49812","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49822","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49804","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49774","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00262","scoring_system":"epss","scoring_elements":"0.49791","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2383"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2383","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2383"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=539592","reference_id":"539592","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=539592"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555220","reference_id":"555220","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555220"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555221","reference_id":"555221","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555221"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555250","reference_id":"555250","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555250"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555255","reference_id":"555255","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555255"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=558977","reference_id":"558977","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=558977"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2007-2383"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5vzn-5rbf-e3hb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58901?format=json","vulnerability_id":"VCID-64mt-9155-tkbv","summary":"The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a \"BEAST\" attack.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3389","reference_id":"","reference_type":"","scores":[{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88379","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88361","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88381","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88397","published_at":"2026-06-09T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88382","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3389"},{"reference_url":"https://curl.se/docs/CVE-2011-3389.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2011-3389.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=737506","reference_id":"737506","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=737506"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201203-02","reference_id":"GLSA-201203-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201203-02"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0508","reference_id":"RHSA-2012:0508","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0508"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2011-3389"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-64mt-9155-tkbv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58852?format=json","vulnerability_id":"VCID-66xs-kat9-j3d1","summary":"The IAX2 channel driver (chan_iax2) in Asterisk before 20070504 does not properly null terminate data, which allows remote attackers to trigger loss of transmitted data, and possibly obtain sensitive information (memory contents) or cause a denial of service (application crash), by sending a frame that lacks a 0 byte.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2488","reference_id":"","reference_type":"","scores":[{"value":"0.03243","scoring_system":"epss","scoring_elements":"0.87348","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03243","scoring_system":"epss","scoring_elements":"0.8737","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03243","scoring_system":"epss","scoring_elements":"0.87367","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03243","scoring_system":"epss","scoring_elements":"0.87364","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03243","scoring_system":"epss","scoring_elements":"0.87363","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03243","scoring_system":"epss","scoring_elements":"0.87376","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2488"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2488","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2488"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-2488"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-66xs-kat9-j3d1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58847?format=json","vulnerability_id":"VCID-6jar-s4wy-6yek","summary":"The Asterisk Extension Language (AEL) in pbx/pbx_ael.c in Asterisk does not properly generate extensions, which allows remote attackers to execute arbitrary extensions and have an unknown impact by specifying an invalid extension in a certain form.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1595","reference_id":"","reference_type":"","scores":[{"value":"0.00848","scoring_system":"epss","scoring_elements":"0.75209","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00848","scoring_system":"epss","scoring_elements":"0.75238","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00848","scoring_system":"epss","scoring_elements":"0.75241","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00848","scoring_system":"epss","scoring_elements":"0.75233","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00848","scoring_system":"epss","scoring_elements":"0.75219","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00848","scoring_system":"epss","scoring_elements":"0.75245","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1595"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1595","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1595"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-1595"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6jar-s4wy-6yek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58949?format=json","vulnerability_id":"VCID-6msa-75ph-qkf1","summary":"Asterisk Open Source 1.8 before 1.8.32.3, 11.x before 11.17.1, 12.x before 12.8.2, and 13.x before 13.3.2 and Certified Asterisk 1.8.28 before 1.8.28-cert5, 11.6 before 11.6-cert11, and 13.1 before 13.1-cert2, when registering a SIP TLS device, does not properly handle a null byte in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3008","reference_id":"","reference_type":"","scores":[{"value":"0.39025","scoring_system":"epss","scoring_elements":"0.97352","published_at":"2026-06-04T12:55:00Z"},{"value":"0.39025","scoring_system":"epss","scoring_elements":"0.97357","published_at":"2026-06-05T12:55:00Z"},{"value":"0.39025","scoring_system":"epss","scoring_elements":"0.97359","published_at":"2026-06-06T12:55:00Z"},{"value":"0.39025","scoring_system":"epss","scoring_elements":"0.9736","published_at":"2026-06-07T12:55:00Z"},{"value":"0.39025","scoring_system":"epss","scoring_elements":"0.97361","published_at":"2026-06-08T12:55:00Z"},{"value":"0.39025","scoring_system":"epss","scoring_elements":"0.97362","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7551","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7551"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782411","reference_id":"782411","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782411"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271615?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2015-3008"],"risk_score":0.2,"exploitability":"0.5","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6msa-75ph-qkf1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58932?format=json","vulnerability_id":"VCID-6pux-8x85-1fgx","summary":"Asterisk Open Source 1.8.x before 1.8.28.1, 11.x before 11.10.1, and 12.x before 12.3.1 and Certified Asterisk 1.8.15 before 1.8.15-cert6 and 11.6 before 11.6-cert3 allows remote attackers to cause a denial of service (connection consumption) via a large number of (1) inactive or (2) incomplete HTTP connections.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-4047","reference_id":"","reference_type":"","scores":[{"value":"0.03038","scoring_system":"epss","scoring_elements":"0.86919","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03038","scoring_system":"epss","scoring_elements":"0.86942","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03038","scoring_system":"epss","scoring_elements":"0.86939","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03038","scoring_system":"epss","scoring_elements":"0.86934","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03038","scoring_system":"epss","scoring_elements":"0.86925","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03038","scoring_system":"epss","scoring_elements":"0.86937","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-4047"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4047","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4047"},{"reference_url":"https://security.gentoo.org/glsa/201406-25","reference_id":"GLSA-201406-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-25"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271611?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%252B1"}],"aliases":["CVE-2014-4047"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6pux-8x85-1fgx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58895?format=json","vulnerability_id":"VCID-6ts7-gv4q-tbg2","summary":"reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.2 does not initialize certain strings, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed Contact header.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2216","reference_id":"","reference_type":"","scores":[{"value":"0.03498","scoring_system":"epss","scoring_elements":"0.87817","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03498","scoring_system":"epss","scoring_elements":"0.87838","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03498","scoring_system":"epss","scoring_elements":"0.8784","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03498","scoring_system":"epss","scoring_elements":"0.87842","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03498","scoring_system":"epss","scoring_elements":"0.87855","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2216"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2216","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2216"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629130","reference_id":"629130","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629130"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-2216"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6ts7-gv4q-tbg2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58858?format=json","vulnerability_id":"VCID-6xdc-c4wy-m3dr","summary":"The Skinny channel driver (chan_skinny) in Asterisk Open Source before 1.4.10, AsteriskNOW before beta7, Appliance Developer Kit before 0.7.0, and Appliance s800i before 1.0.3 allows remote authenticated users to cause a denial of service (application crash) via a CAPABILITIES_RES_MESSAGE packet with a capabilities count larger than the capabilities_res_message array population.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4280","reference_id":"","reference_type":"","scores":[{"value":"0.03548","scoring_system":"epss","scoring_elements":"0.87897","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03548","scoring_system":"epss","scoring_elements":"0.87918","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03548","scoring_system":"epss","scoring_elements":"0.87921","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03548","scoring_system":"epss","scoring_elements":"0.87922","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03548","scoring_system":"epss","scoring_elements":"0.87935","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4280"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4280","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4280"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-4280"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6xdc-c4wy-m3dr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58910?format=json","vulnerability_id":"VCID-7ak5-wcah-s7ed","summary":"Heap-based buffer overflow in chan_skinny.c in the Skinny channel driver in Asterisk Open Source 1.6.2.x before 1.6.2.24, 1.8.x before 1.8.11.1, and 10.x before 10.3.1 allows remote authenticated users to cause a denial of service or possibly have unspecified other impact via a series of KEYPAD_BUTTON_MESSAGE events.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2415","reference_id":"","reference_type":"","scores":[{"value":"0.10525","scoring_system":"epss","scoring_elements":"0.93394","published_at":"2026-06-04T12:55:00Z"},{"value":"0.10525","scoring_system":"epss","scoring_elements":"0.93405","published_at":"2026-06-08T12:55:00Z"},{"value":"0.10525","scoring_system":"epss","scoring_elements":"0.93406","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10525","scoring_system":"epss","scoring_elements":"0.93414","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2415"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2415","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2415"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670180","reference_id":"670180","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670180"},{"reference_url":"https://security.gentoo.org/glsa/201206-05","reference_id":"GLSA-201206-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-05"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-2415"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7ak5-wcah-s7ed"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59119?format=json","vulnerability_id":"VCID-7pec-5h4d-yff4","summary":"PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.12 and prior affects applications that use PJSIP DNS resolution. It doesn't affect PJSIP users who utilize an external resolver. This vulnerability is related to CVE-2023-27585. The difference is that this issue is in parsing the query record `parse_rr()`, while the issue in CVE-2023-27585 is in `parse_query()`. A patch is available in the `master` branch of the `pjsip/pjproject` GitHub repository. A workaround is to disable DNS resolution in PJSIP config (by setting `nameserver_count` to zero) or use an external resolver instead.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24793","reference_id":"","reference_type":"","scores":[{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.65015","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.65058","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.65069","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.65057","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.65045","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.65063","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976","reference_id":"1014976","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://github.com/pjsip/pjproject/commit/9fae8f43accef8ea65d4a8ae9cdf297c46cfe29a","reference_id":"9fae8f43accef8ea65d4a8ae9cdf297c46cfe29a","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:00Z/"}],"url":"https://github.com/pjsip/pjproject/commit/9fae8f43accef8ea65d4a8ae9cdf297c46cfe29a"},{"reference_url":"https://www.debian.org/security/2022/dsa-5285","reference_id":"dsa-5285","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:00Z/"}],"url":"https://www.debian.org/security/2022/dsa-5285"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-p6g5-v97c-w5q4","reference_id":"GHSA-p6g5-v97c-w5q4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:00Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-p6g5-v97c-w5q4"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:00Z/"}],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:00Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:00Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00047.html","reference_id":"msg00047.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:00Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00047.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-24793"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7pec-5h4d-yff4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58873?format=json","vulnerability_id":"VCID-7u7r-v9zz-sugu","summary":"The IAX2 protocol implementation in Asterisk Open Source 1.0.x, 1.2.x before 1.2.30, and 1.4.x before 1.4.21.2; Business Edition A.x.x, B.x.x before B.2.5.4, and C.x.x before C.1.10.3; AsteriskNOW; Appliance Developer Kit 0.x.x; and s800i 1.0.x before 1.2.0.1 allows remote attackers to cause a denial of service (call-number exhaustion and CPU consumption) by quickly sending a large number of IAX2 (IAX) POKE requests.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-3263","reference_id":"","reference_type":"","scores":[{"value":"0.36096","scoring_system":"epss","scoring_elements":"0.97184","published_at":"2026-06-04T12:55:00Z"},{"value":"0.36096","scoring_system":"epss","scoring_elements":"0.97188","published_at":"2026-06-05T12:55:00Z"},{"value":"0.36096","scoring_system":"epss","scoring_elements":"0.9719","published_at":"2026-06-06T12:55:00Z"},{"value":"0.36096","scoring_system":"epss","scoring_elements":"0.97192","published_at":"2026-06-08T12:55:00Z"},{"value":"0.36096","scoring_system":"epss","scoring_elements":"0.97194","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-3263"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3263","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3263"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32095.pl","reference_id":"CVE-2008-3263;OSVDB-47253","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32095.pl"},{"reference_url":"https://www.securityfocus.com/bid/30321/info","reference_id":"CVE-2008-3263;OSVDB-47253","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/30321/info"},{"reference_url":"https://security.gentoo.org/glsa/200905-01","reference_id":"GLSA-200905-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200905-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-3263"],"risk_score":0.6,"exploitability":"2.0","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7u7r-v9zz-sugu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58864?format=json","vulnerability_id":"VCID-88nz-dd1a-3uc8","summary":"Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and Business Edition B.x.x before B.2.3.6 and C.x.x before C.1.0-beta8, when using database-based registrations (\"realtime\") and host-based authentication, does not check the IP address when the username is correct and there is no password, which allows remote attackers to bypass authentication using a valid username.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6430","reference_id":"","reference_type":"","scores":[{"value":"0.00659","scoring_system":"epss","scoring_elements":"0.71472","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00659","scoring_system":"epss","scoring_elements":"0.71516","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00659","scoring_system":"epss","scoring_elements":"0.71523","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00659","scoring_system":"epss","scoring_elements":"0.71499","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00659","scoring_system":"epss","scoring_elements":"0.71483","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00659","scoring_system":"epss","scoring_elements":"0.71506","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6430"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6430","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6430"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457063","reference_id":"457063","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457063"},{"reference_url":"https://security.gentoo.org/glsa/200804-13","reference_id":"GLSA-200804-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200804-13"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-6430"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-88nz-dd1a-3uc8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58942?format=json","vulnerability_id":"VCID-8gc8-cyb2-gube","summary":"The DB dialplan function in Asterisk Open Source 1.8.x before 1.8.32, 11.x before 11.1.4.1, 12.x before 12.7.1, and 13.x before 13.0.1 and Certified Asterisk 1.8 before 1.8.28-cert8 and 11.6 before 11.6-cert8 allows remote authenticated users to gain privileges via a call from an external protocol, as demonstrated by the AMI protocol.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8418","reference_id":"","reference_type":"","scores":[{"value":"0.01284","scoring_system":"epss","scoring_elements":"0.79951","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01284","scoring_system":"epss","scoring_elements":"0.79977","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01284","scoring_system":"epss","scoring_elements":"0.79982","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01284","scoring_system":"epss","scoring_elements":"0.79978","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01284","scoring_system":"epss","scoring_elements":"0.79967","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01284","scoring_system":"epss","scoring_elements":"0.79987","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8418"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8418","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8418"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771463","reference_id":"771463","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771463"},{"reference_url":"https://security.gentoo.org/glsa/201412-51","reference_id":"GLSA-201412-51","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-51"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2014-8418"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8gc8-cyb2-gube"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58863?format=json","vulnerability_id":"VCID-8nu6-n38z-kyfw","summary":"SQL injection vulnerability in the Postgres Realtime Engine (res_config_pgsql) in Asterisk 1.4.x before 1.4.15 and C.x before C.1.0-beta6 allows remote attackers to execute arbitrary SQL commands via unknown vectors.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6171","reference_id":"","reference_type":"","scores":[{"value":"0.00189","scoring_system":"epss","scoring_elements":"0.40493","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00189","scoring_system":"epss","scoring_elements":"0.40572","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00189","scoring_system":"epss","scoring_elements":"0.40575","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00189","scoring_system":"epss","scoring_elements":"0.40547","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00189","scoring_system":"epss","scoring_elements":"0.40517","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00189","scoring_system":"epss","scoring_elements":"0.40531","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6171"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6171","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6171"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-6171"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8nu6-n38z-kyfw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59145?format=json","vulnerability_id":"VCID-8t63-f1tx-7bdy","summary":"An issue was discovered in Sangoma Asterisk through 16.28, 17 and 18 through 18.14, 19 through 19.6, and certified through 18.9-cert1. GetConfig, via Asterisk Manager Interface, allows a connected application to access files outside of the asterisk configuration directory, aka Directory Traversal.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-42706","reference_id":"","reference_type":"","scores":[{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74583","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74615","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.7462","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74609","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74591","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74618","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-42706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706"},{"reference_url":"https://downloads.asterisk.org/pub/security/AST-2022-009.html","reference_id":"AST-2022-009.html","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:23:22Z/"}],"url":"https://downloads.asterisk.org/pub/security/AST-2022-009.html"},{"reference_url":"https://www.debian.org/security/2023/dsa-5358","reference_id":"dsa-5358","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:23:22Z/"}],"url":"https://www.debian.org/security/2023/dsa-5358"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html","reference_id":"msg00029.html","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:23:22Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-42706"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8t63-f1tx-7bdy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58913?format=json","vulnerability_id":"VCID-8ttw-uus5-ybbq","summary":"chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by closing a connection in off-hook mode.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2948","reference_id":"","reference_type":"","scores":[{"value":"0.03932","scoring_system":"epss","scoring_elements":"0.88535","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03932","scoring_system":"epss","scoring_elements":"0.88553","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03932","scoring_system":"epss","scoring_elements":"0.88555","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03932","scoring_system":"epss","scoring_elements":"0.88554","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03932","scoring_system":"epss","scoring_elements":"0.88572","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2948"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2948","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2948"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=675210","reference_id":"675210","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=675210"},{"reference_url":"https://security.gentoo.org/glsa/201206-05","reference_id":"GLSA-201206-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-05"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-2948"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8ttw-uus5-ybbq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59076?format=json","vulnerability_id":"VCID-92c9-qp87-bfc4","summary":"Buffer overflow in PJSUA API when calling pjsua_call_dump. An attacker-controlled 'buffer' argument may cause a buffer overflow, since supplying an output buffer smaller than 128 characters may overflow the output buffer, regardless of the 'maxlen' argument supplied","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43303","reference_id":"","reference_type":"","scores":[{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62755","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62798","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62807","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62797","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62783","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"},{"reference_url":"https://usn.ubuntu.com/8122-1/","reference_id":"USN-8122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8122-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-43303"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-92c9-qp87-bfc4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58927?format=json","vulnerability_id":"VCID-9nef-5fj4-wbbp","summary":"channels/chan_sip.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before 11.8.1, and 12.1.x before 12.1.1, and Certified Asterisk 1.8.15 before 1.8.15-cert5 and 11.6 before 11.6-cert2, when chan_sip has a certain configuration, allows remote authenticated users to cause a denial of service (channel and file descriptor consumption) via an INVITE request with a (1) Session-Expires or (2) Min-SE header with a malformed or invalid value.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-2287","reference_id":"","reference_type":"","scores":[{"value":"0.05216","scoring_system":"epss","scoring_elements":"0.9011","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05216","scoring_system":"epss","scoring_elements":"0.90127","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05216","scoring_system":"epss","scoring_elements":"0.90126","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05216","scoring_system":"epss","scoring_elements":"0.90124","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05216","scoring_system":"epss","scoring_elements":"0.90123","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05216","scoring_system":"epss","scoring_elements":"0.90138","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-2287"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2287","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2287"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741313","reference_id":"741313","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741313"},{"reference_url":"https://security.gentoo.org/glsa/201405-05","reference_id":"GLSA-201405-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201405-05"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271611?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%252B1"}],"aliases":["CVE-2014-2287"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9nef-5fj4-wbbp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59143?format=json","vulnerability_id":"VCID-a2r2-kh13-y7cr","summary":"A use-after-free in res_pjsip_pubsub.c in Sangoma Asterisk 16.28, 18.14, 19.6, and certified/18.9-cert2 may allow a remote authenticated attacker to crash Asterisk (denial of service) by performing activity on a subscription via a reliable transport at the same time that Asterisk is also performing activity on that subscription.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-42705","reference_id":"","reference_type":"","scores":[{"value":"0.01516","scoring_system":"epss","scoring_elements":"0.81552","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01516","scoring_system":"epss","scoring_elements":"0.81581","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01516","scoring_system":"epss","scoring_elements":"0.81583","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01516","scoring_system":"epss","scoring_elements":"0.81582","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01516","scoring_system":"epss","scoring_elements":"0.81575","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01516","scoring_system":"epss","scoring_elements":"0.8159","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706"},{"reference_url":"https://downloads.asterisk.org/pub/security/AST-2022-008.html","reference_id":"AST-2022-008.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:25:02Z/"}],"url":"https://downloads.asterisk.org/pub/security/AST-2022-008.html"},{"reference_url":"https://www.debian.org/security/2023/dsa-5358","reference_id":"dsa-5358","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:25:02Z/"}],"url":"https://www.debian.org/security/2023/dsa-5358"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html","reference_id":"msg00029.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:25:02Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-42705"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a2r2-kh13-y7cr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58876?format=json","vulnerability_id":"VCID-a83b-2vdm-f7g1","summary":"Asterisk Open Source 1.2.26 through 1.2.30.3 and Business Edition B.2.3.5 through B.2.5.5, when realtime IAX2 users are enabled, allows remote attackers to cause a denial of service (crash) via authentication attempts involving (1) an unknown user or (2) a user using hostname matching.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5558","reference_id":"","reference_type":"","scores":[{"value":"0.02263","scoring_system":"epss","scoring_elements":"0.8493","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02263","scoring_system":"epss","scoring_elements":"0.84954","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02263","scoring_system":"epss","scoring_elements":"0.84959","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02263","scoring_system":"epss","scoring_elements":"0.84944","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-5558"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5558"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=509686","reference_id":"509686","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=509686"},{"reference_url":"https://security.gentoo.org/glsa/200905-01","reference_id":"GLSA-200905-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200905-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-5558"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a83b-2vdm-f7g1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59010?format=json","vulnerability_id":"VCID-a9et-qfg6-yudx","summary":"An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. res_pjsip allows remote authenticated users to crash Asterisk (segmentation fault) by sending a number of SIP INVITE messages on a TCP or TLS connection and then suddenly closing the connection.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7286","reference_id":"","reference_type":"","scores":[{"value":"0.54632","scoring_system":"epss","scoring_elements":"0.98076","published_at":"2026-06-09T12:55:00Z"},{"value":"0.54632","scoring_system":"epss","scoring_elements":"0.98078","published_at":"2026-06-07T12:55:00Z"},{"value":"0.54632","scoring_system":"epss","scoring_elements":"0.98079","published_at":"2026-06-06T12:55:00Z"},{"value":"0.54632","scoring_system":"epss","scoring_elements":"0.98077","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7286"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891228","reference_id":"891228","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891228"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44181.py","reference_id":"CVE-2018-7286","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44181.py"},{"reference_url":"https://raw.githubusercontent.com/EnableSecurity/advisories/master/ES2018-04-asterisk-pjsip-tcp-segfault/README.md","reference_id":"CVE-2018-7286","reference_type":"exploit","scores":[],"url":"https://raw.githubusercontent.com/EnableSecurity/advisories/master/ES2018-04-asterisk-pjsip-tcp-segfault/README.md"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2018-7286"],"risk_score":1.0,"exploitability":"2.0","weighted_severity":"0.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a9et-qfg6-yudx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58922?format=json","vulnerability_id":"VCID-ab4w-jnxz-aka8","summary":"main/http.c in the HTTP server in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones does not properly restrict Content-Length values, which allows remote attackers to conduct stack-consumption attacks and cause a denial of service (daemon crash) via a crafted HTTP POST request.  NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-5976.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2686","reference_id":"","reference_type":"","scores":[{"value":"0.02448","scoring_system":"epss","scoring_elements":"0.85471","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02448","scoring_system":"epss","scoring_elements":"0.85495","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02448","scoring_system":"epss","scoring_elements":"0.85499","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02448","scoring_system":"epss","scoring_elements":"0.8548","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2686"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2686","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2686"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704114","reference_id":"704114","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704114"},{"reference_url":"https://security.gentoo.org/glsa/201401-15","reference_id":"GLSA-201401-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2013-2686"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ab4w-jnxz-aka8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58866?format=json","vulnerability_id":"VCID-assz-3mbc-fygg","summary":"Multiple buffer overflows in Asterisk Open Source 1.4.x before 1.4.18.1 and 1.4.19-rc3, Open Source 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6.1, AsteriskNOW 1.0.x before 1.0.2, Appliance Developer Kit before 1.4 revision 109386, and s800i 1.1.x before 1.1.0.2 allow remote attackers to (1) write a zero to an arbitrary memory location via a large RTP payload number, related to the ast_rtp_unset_m_type function in main/rtp.c; or (2) write certain integers to an arbitrary memory location via a large number of RTP payloads, related to the process_sdp function in channels/chan_sip.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1289.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1289.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1289","reference_id":"","reference_type":"","scores":[{"value":"0.24953","scoring_system":"epss","scoring_elements":"0.96269","published_at":"2026-06-04T12:55:00Z"},{"value":"0.24953","scoring_system":"epss","scoring_elements":"0.96274","published_at":"2026-06-05T12:55:00Z"},{"value":"0.24953","scoring_system":"epss","scoring_elements":"0.96276","published_at":"2026-06-06T12:55:00Z"},{"value":"0.24953","scoring_system":"epss","scoring_elements":"0.96277","published_at":"2026-06-08T12:55:00Z"},{"value":"0.24953","scoring_system":"epss","scoring_elements":"0.96281","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1289"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1289","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1289"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=438127","reference_id":"438127","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=438127"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/31440.txt","reference_id":"CVE-2008-1289;OSVDB-43416","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/31440.txt"},{"reference_url":"https://www.securityfocus.com/bid/28308/info","reference_id":"CVE-2008-1289;OSVDB-43416","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/28308/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-1289"],"risk_score":0.4,"exploitability":"2.0","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-assz-3mbc-fygg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58990?format=json","vulnerability_id":"VCID-avwt-12vk-8ybn","summary":"Remote code execution can occur in Asterisk Open Source 13.x before 13.14.1 and 14.x before 14.3.1 and Certified Asterisk 13.13 before 13.13-cert3 because of a buffer overflow in a CDR user field, related to X-ClientCode in chan_sip, the CDR dialplan function, and the AMI Monitor action.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7617","reference_id":"","reference_type":"","scores":[{"value":"0.22039","scoring_system":"epss","scoring_elements":"0.95888","published_at":"2026-06-04T12:55:00Z"},{"value":"0.22039","scoring_system":"epss","scoring_elements":"0.95892","published_at":"2026-06-05T12:55:00Z"},{"value":"0.22039","scoring_system":"epss","scoring_elements":"0.95896","published_at":"2026-06-08T12:55:00Z"},{"value":"0.22039","scoring_system":"epss","scoring_elements":"0.95902","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-7617"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7617"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859910","reference_id":"859910","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859910"},{"reference_url":"https://usn.ubuntu.com/USN-4814-1/","reference_id":"USN-USN-4814-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4814-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2017-7617"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-avwt-12vk-8ybn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59207?format=json","vulnerability_id":"VCID-b3wc-8zzz-wbhq","summary":"Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, the asterisk/contrib/scripts/ast_coredumper runs as root, as noted by the NOTES tag on line 689 of the ast_coredumper file. The script will source the contents of /etc/asterisk/ast_debug_tools.conf, which resides in a folder that is writeable by the asterisk user:group. Due to the /etc/asterisk/ast_debug_tools.conf file following bash semantics and it being loaded; an attacker with write permissions may add or modify the file such that when the root ast_coredumper is run; it would source and thereby execute arbitrary bash code found in the /etc/asterisk/ast_debug_tools.conf. This issue has been patched in versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23741","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12702","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12697","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12669","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.17306","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.17289","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23741"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23741","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23741"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127438","reference_id":"1127438","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127438"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-rvch-3jmx-3jf3","reference_id":"GHSA-rvch-3jmx-3jf3","reference_type":"","scores":[{"value":"0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-06T17:22:49Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-rvch-3jmx-3jf3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2026-23741"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b3wc-8zzz-wbhq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59042?format=json","vulnerability_id":"VCID-b44e-ck1f-xbbh","summary":"An issue was discovered in res_pjsip_diversion.c in Sangoma Asterisk before 13.38.0, 14.x through 16.x before 16.15.0, 17.x before 17.9.0, and 18.x before 18.1.0. A crash can occur when a SIP message is received with a History-Info header that contains a tel-uri, or when a SIP 181 response is received that contains a tel-uri in the Diversion header.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35652","reference_id":"","reference_type":"","scores":[{"value":"0.0016","scoring_system":"epss","scoring_elements":"0.36604","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0016","scoring_system":"epss","scoring_elements":"0.36697","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0016","scoring_system":"epss","scoring_elements":"0.36705","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0016","scoring_system":"epss","scoring_elements":"0.36669","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0016","scoring_system":"epss","scoring_elements":"0.36632","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0016","scoring_system":"epss","scoring_elements":"0.36642","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35652"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35652","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35652"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979372","reference_id":"979372","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979372"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2020-35652"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b44e-ck1f-xbbh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59034?format=json","vulnerability_id":"VCID-b6fe-tfcc-ekc7","summary":"An Integer Signedness issue (for a return code) in the res_pjsip_sdp_rtp module in Digium Asterisk versions 15.7.1 and earlier and 16.1.1 and earlier allows remote authenticated users to crash Asterisk via a specially crafted SDP protocol violation.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-7251","reference_id":"","reference_type":"","scores":[{"value":"0.04411","scoring_system":"epss","scoring_elements":"0.89202","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04411","scoring_system":"epss","scoring_elements":"0.89219","published_at":"2026-06-05T12:55:00Z"},{"value":"0.04411","scoring_system":"epss","scoring_elements":"0.8922","published_at":"2026-06-08T12:55:00Z"},{"value":"0.04411","scoring_system":"epss","scoring_elements":"0.89236","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-7251"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7251","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7251"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=923690","reference_id":"923690","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=923690"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2019-7251"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b6fe-tfcc-ekc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59122?format=json","vulnerability_id":"VCID-be9t-dvvc-ubaw","summary":"An issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it is possible to download files that are not certificates. These files could be much larger than what one would expect to download, leading to Resource Exhaustion. This is fixed in 16.25.2, 18.11.2, and 19.3.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-26498","reference_id":"","reference_type":"","scores":[{"value":"0.01011","scoring_system":"epss","scoring_elements":"0.7746","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01011","scoring_system":"epss","scoring_elements":"0.77487","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01011","scoring_system":"epss","scoring_elements":"0.77496","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01011","scoring_system":"epss","scoring_elements":"0.77476","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01011","scoring_system":"epss","scoring_elements":"0.77498","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-26498"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-be9t-dvvc-ubaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58907?format=json","vulnerability_id":"VCID-bt6h-dkwf-h7dm","summary":"Stack-based buffer overflow in the ast_parse_digest function in main/utils.c in Asterisk 1.8.x before 1.8.10.1 and 10.x before 10.2.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in an HTTP Digest Authentication header.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1184","reference_id":"","reference_type":"","scores":[{"value":"0.37421","scoring_system":"epss","scoring_elements":"0.97267","published_at":"2026-06-04T12:55:00Z"},{"value":"0.37421","scoring_system":"epss","scoring_elements":"0.97272","published_at":"2026-06-05T12:55:00Z"},{"value":"0.37421","scoring_system":"epss","scoring_elements":"0.97273","published_at":"2026-06-06T12:55:00Z"},{"value":"0.37421","scoring_system":"epss","scoring_elements":"0.97274","published_at":"2026-06-07T12:55:00Z"},{"value":"0.37421","scoring_system":"epss","scoring_elements":"0.97275","published_at":"2026-06-08T12:55:00Z"},{"value":"0.37421","scoring_system":"epss","scoring_elements":"0.97276","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1184"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=664411","reference_id":"664411","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=664411"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18855.txt","reference_id":"CVE-2012-1184;OSVDB-80126","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18855.txt"},{"reference_url":"https://security.gentoo.org/glsa/201203-21","reference_id":"GLSA-201203-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201203-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-1184"],"risk_score":0.6,"exploitability":"2.0","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bt6h-dkwf-h7dm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58898?format=json","vulnerability_id":"VCID-bv7m-v54w-uyg5","summary":"chan_sip.c in the SIP channel driver in Asterisk Open Source 1.4.x before 1.4.41.2, 1.6.2.x before 1.6.2.18.2, and 1.8.x before 1.8.4.4, and Asterisk Business Edition C.3.x before C.3.7.3, disregards the alwaysauthreject option and generates different responses for invalid SIP requests depending on whether the user account exists, which allows remote attackers to enumerate account names via a series of requests.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2536","reference_id":"","reference_type":"","scores":[{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40338","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40418","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40421","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40393","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40364","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00187","scoring_system":"epss","scoring_elements":"0.40379","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2536"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2536","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2536"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632029","reference_id":"632029","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632029"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-2536"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bv7m-v54w-uyg5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58985?format=json","vulnerability_id":"VCID-c7cg-3ryv-x3ae","summary":"A Remote Crash issue was discovered in Asterisk Open Source 13.x before 13.18.4, 14.x before 14.7.4, and 15.x before 15.1.4 and Certified Asterisk before 13.13-cert9. Certain compound RTCP packets cause a crash in the RTCP Stack.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-17664","reference_id":"","reference_type":"","scores":[{"value":"0.01276","scoring_system":"epss","scoring_elements":"0.79893","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01276","scoring_system":"epss","scoring_elements":"0.79918","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01276","scoring_system":"epss","scoring_elements":"0.79923","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01276","scoring_system":"epss","scoring_elements":"0.79906","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01276","scoring_system":"epss","scoring_elements":"0.79925","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-17664"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17664","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17664"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884345","reference_id":"884345","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884345"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-17664"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c7cg-3ryv-x3ae"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58849?format=json","vulnerability_id":"VCID-c8z6-4zc2-u3fm","summary":"The Manager Interface in Asterisk before 1.2.18 and 1.4.x before 1.4.3 allows remote attackers to cause a denial of service (crash) by using MD5 authentication to authenticate a user that does not have a password defined in manager.conf, resulting in a NULL pointer dereference.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2294","reference_id":"","reference_type":"","scores":[{"value":"0.05909","scoring_system":"epss","scoring_elements":"0.90773","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05909","scoring_system":"epss","scoring_elements":"0.90787","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05909","scoring_system":"epss","scoring_elements":"0.90784","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05909","scoring_system":"epss","scoring_elements":"0.90782","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05909","scoring_system":"epss","scoring_elements":"0.90798","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2294"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-2294"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c8z6-4zc2-u3fm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59018?format=json","vulnerability_id":"VCID-cdyb-1ntz-63as","summary":"An issue was discovered in Asterisk Open Source through 13.27.0, 14.x and 15.x through 15.7.2, and 16.x through 16.4.0, and Certified Asterisk through 13.21-cert3. A pointer dereference in chan_sip while handling SDP negotiation allows an attacker to crash Asterisk when handling an SDP answer to an outgoing T.38 re-invite. To exploit this vulnerability an attacker must cause the chan_sip module to send a T.38 re-invite request to them. Upon receipt, the attacker must send an SDP answer containing both a T.38 UDPTL stream and another media stream containing only a codec (which is not permitted according to the chan_sip configuration).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13161","reference_id":"","reference_type":"","scores":[{"value":"0.02307","scoring_system":"epss","scoring_elements":"0.8505","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02307","scoring_system":"epss","scoring_elements":"0.85074","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02307","scoring_system":"epss","scoring_elements":"0.85078","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02307","scoring_system":"epss","scoring_elements":"0.85072","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02307","scoring_system":"epss","scoring_elements":"0.85062","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02307","scoring_system":"epss","scoring_elements":"0.85077","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-13161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13161"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931981","reference_id":"931981","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931981"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2019-13161"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cdyb-1ntz-63as"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58893?format=json","vulnerability_id":"VCID-cfve-f8ja-nqcp","summary":"Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 do not restrict the number of unauthenticated sessions to certain interfaces, which allows remote attackers to cause a denial of service (file descriptor exhaustion and disk space exhaustion) via a series of TCP connections.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1507","reference_id":"","reference_type":"","scores":[{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.34765","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.34862","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.34879","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.34843","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.34806","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.34828","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1507"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1507","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1507"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-1507"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cfve-f8ja-nqcp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58915?format=json","vulnerability_id":"VCID-cjq2-aavb-8udt","summary":"Double free vulnerability in apps/app_voicemail.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Asterisk Digiumphones 10.x.x-digiumphones before 10.5.2-digiumphones allows remote authenticated users to cause a denial of service (daemon crash) by establishing multiple voicemail sessions and accessing both the Urgent mailbox and the INBOX mailbox.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-3812","reference_id":"","reference_type":"","scores":[{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91734","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91745","published_at":"2026-06-05T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91748","published_at":"2026-06-06T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91744","published_at":"2026-06-07T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91742","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91757","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-3812"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3812","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3812"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470","reference_id":"680470","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470"},{"reference_url":"https://security.gentoo.org/glsa/201209-15","reference_id":"GLSA-201209-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201209-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-3812"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cjq2-aavb-8udt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58947?format=json","vulnerability_id":"VCID-czvg-g2nd-37da","summary":"Asterisk Open Source 12.x before 12.8.1 and 13.x before 13.1.1, when using the PJSIP channel driver, does not properly reclaim RTP ports, which allows remote authenticated users to cause a denial of service (file descriptor consumption) via an SDP offer containing only incompatible codecs.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-1558","reference_id":"","reference_type":"","scores":[{"value":"0.15669","scoring_system":"epss","scoring_elements":"0.94829","published_at":"2026-06-04T12:55:00Z"},{"value":"0.15669","scoring_system":"epss","scoring_elements":"0.94838","published_at":"2026-06-05T12:55:00Z"},{"value":"0.15669","scoring_system":"epss","scoring_elements":"0.94839","published_at":"2026-06-06T12:55:00Z"},{"value":"0.15669","scoring_system":"epss","scoring_elements":"0.9484","published_at":"2026-06-08T12:55:00Z"},{"value":"0.15669","scoring_system":"epss","scoring_elements":"0.94845","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-1558"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1558"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780601","reference_id":"780601","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780601"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2015-1558"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-czvg-g2nd-37da"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59000?format=json","vulnerability_id":"VCID-d9tf-a5h1-f3ck","summary":"There is a stack consumption vulnerability in the res_http_websocket.so module of Asterisk through 13.23.0, 14.7.x through 14.7.7, and 15.x through 15.6.0 and Certified Asterisk through 13.21-cert2. It allows an attacker to crash Asterisk via a specially crafted HTTP request to upgrade the connection to a websocket.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17281","reference_id":"","reference_type":"","scores":[{"value":"0.80258","scoring_system":"epss","scoring_elements":"0.9914","published_at":"2026-06-04T12:55:00Z"},{"value":"0.80258","scoring_system":"epss","scoring_elements":"0.99141","published_at":"2026-06-07T12:55:00Z"},{"value":"0.80258","scoring_system":"epss","scoring_elements":"0.99142","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17281"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909554","reference_id":"909554","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909554"},{"reference_url":"https://security.gentoo.org/glsa/201811-11","reference_id":"GLSA-201811-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201811-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2018-17281"],"risk_score":1.4,"exploitability":"2.0","weighted_severity":"0.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d9tf-a5h1-f3ck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59179?format=json","vulnerability_id":"VCID-ddbj-f24k-ubb1","summary":"Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE (RFC 3428) authentication do not get proper alignment. An authenticated attacker can spoof any user identity to send spam messages to the user with their authorization token. Abuse of this security issue allows authenticated attackers to send fake chat messages can be spoofed to appear to come from trusted entities. Even administrators who follow Security best practices and Security Considerations can be impacted. Therefore, abuse can lead to spam and enable social engineering, phishing and similar attacks. Versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk fix the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-47779","reference_id":"","reference_type":"","scores":[{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51578","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51607","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51613","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.51591","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00279","scoring_system":"epss","scoring_elements":"0.5156","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-47779"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47779","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47779"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106528","reference_id":"1106528","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106528"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw","reference_id":"GHSA-2grh-7mhv-fcfw","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-22T17:25:58Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw"},{"reference_url":"https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample","reference_id":"pjsip.conf.sample","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-22T17:25:58Z/"}],"url":"https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2025-47779"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"6.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ddbj-f24k-ubb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58880?format=json","vulnerability_id":"VCID-dfj1-mvja-dbh2","summary":"The IAX2 protocol implementation in Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.2, 1.6.0.x before 1.6.0.15, and 1.6.1.x before 1.6.1.6; Business Edition B.x.x before B.2.5.10, C.2.x before C.2.4.3, and C.3.x before C.3.1.1; and s800i 1.3.x before 1.3.0.3 allows remote attackers to cause a denial of service (call-number exhaustion) by initiating many IAX2 message exchanges, a related issue to CVE-2008-3263.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2346.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2346.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2346","reference_id":"","reference_type":"","scores":[{"value":"0.00791","scoring_system":"epss","scoring_elements":"0.74261","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00791","scoring_system":"epss","scoring_elements":"0.74294","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00791","scoring_system":"epss","scoring_elements":"0.74298","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00791","scoring_system":"epss","scoring_elements":"0.74284","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00791","scoring_system":"epss","scoring_elements":"0.74266","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00791","scoring_system":"epss","scoring_elements":"0.74293","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2346"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=521164","reference_id":"521164","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=521164"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539473","reference_id":"539473","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539473"},{"reference_url":"https://security.gentoo.org/glsa/201006-20","reference_id":"GLSA-201006-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-20"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2009-2346"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dfj1-mvja-dbh2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59151?format=json","vulnerability_id":"VCID-drvj-6p87-rqcn","summary":"Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; as well as ceritifed-asterisk 18.9-cert5 and prior, the 'update' functionality of the PJSIP_HEADER dialplan function can exceed the available buffer space for storing the new value of a header. By doing so this can overwrite memory or cause a crash. This is not externally exploitable, unless dialplan is explicitly written to update a header based on data from an outside source. If the 'update' functionality is not used the vulnerability does not occur. A patch is available at commit a1ca0268254374b515fa5992f01340f7717113fa.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-37457","reference_id":"","reference_type":"","scores":[{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22423","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.2241","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22361","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22308","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22323","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-37457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38703","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38703"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49786"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059303","reference_id":"1059303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059303"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196088?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-341r-eamh-fbee"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u4"}],"aliases":["CVE-2023-37457"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-drvj-6p87-rqcn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58865?format=json","vulnerability_id":"VCID-e9a9-quqt-gbe8","summary":"The SIP channel driver in Asterisk Open Source 1.4.x before 1.4.17, Business Edition before C.1.0-beta8, AsteriskNOW before beta7, Appliance Developer Kit before Asterisk 1.4 revision 95946, and Appliance s800i 1.0.x before 1.0.3.4 allows remote attackers to cause a denial of service (daemon crash) via a BYE message with an Also (Also transfer) header, which triggers a NULL pointer dereference.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-0095","reference_id":"","reference_type":"","scores":[{"value":"0.26555","scoring_system":"epss","scoring_elements":"0.96431","published_at":"2026-06-04T12:55:00Z"},{"value":"0.26555","scoring_system":"epss","scoring_elements":"0.96435","published_at":"2026-06-05T12:55:00Z"},{"value":"0.26555","scoring_system":"epss","scoring_elements":"0.96439","published_at":"2026-06-06T12:55:00Z"},{"value":"0.26555","scoring_system":"epss","scoring_elements":"0.9644","published_at":"2026-06-08T12:55:00Z"},{"value":"0.26555","scoring_system":"epss","scoring_elements":"0.96446","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-0095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0095"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=458952","reference_id":"458952","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=458952"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/30974.txt","reference_id":"CVE-2008-0095;OSVDB-39841","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/30974.txt"},{"reference_url":"https://www.securityfocus.com/bid/27110/info","reference_id":"CVE-2008-0095;OSVDB-39841","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/27110/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-0095"],"risk_score":0.4,"exploitability":"2.0","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e9a9-quqt-gbe8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58995?format=json","vulnerability_id":"VCID-ej5v-pfx7-zfdh","summary":"An issue was discovered in Asterisk Open Source 13.x before 13.21.1, 14.x before 14.7.7, and 15.x before 15.4.1 and Certified Asterisk 13.18-cert before 13.18-cert4 and 13.21-cert before 13.21-cert2. When endpoint specific ACL rules block a SIP request, they respond with a 403 forbidden. However, if an endpoint is not identified, then a 401 unauthorized response is sent. This vulnerability just discloses which requests hit a defined endpoint. The ACL rules cannot be bypassed to gain access to the disclosed endpoints.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12227","reference_id":"","reference_type":"","scores":[{"value":"0.0106","scoring_system":"epss","scoring_elements":"0.77977","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0106","scoring_system":"epss","scoring_elements":"0.78004","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0106","scoring_system":"epss","scoring_elements":"0.78011","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0106","scoring_system":"epss","scoring_elements":"0.78001","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0106","scoring_system":"epss","scoring_elements":"0.7799","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0106","scoring_system":"epss","scoring_elements":"0.78007","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-12227"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902954","reference_id":"902954","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902954"},{"reference_url":"https://security.gentoo.org/glsa/201811-11","reference_id":"GLSA-201811-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201811-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2018-12227"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ej5v-pfx7-zfdh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58954?format=json","vulnerability_id":"VCID-fb56-35es-v3bz","summary":"chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and Certified Asterisk 1.8.28, 11.6 before 11.6-cert12, and 13.1 before 13.1-cert3, when the timert1 sip.conf configuration is set to a value greater than 1245, allows remote attackers to cause a denial of service (file descriptor consumption) via vectors related to large retransmit timeout values.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2316","reference_id":"","reference_type":"","scores":[{"value":"0.01094","scoring_system":"epss","scoring_elements":"0.78317","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01094","scoring_system":"epss","scoring_elements":"0.78343","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01094","scoring_system":"epss","scoring_elements":"0.78352","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01094","scoring_system":"epss","scoring_elements":"0.78342","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01094","scoring_system":"epss","scoring_elements":"0.78329","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01094","scoring_system":"epss","scoring_elements":"0.78346","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7551","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7551"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271615?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2016-2316"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fb56-35es-v3bz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58855?format=json","vulnerability_id":"VCID-fbh2-kfn9-z7fs","summary":"The Skinny channel driver (chan_skinny) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denial of service (crash) via a certain data length value in a crafted packet, which results in an \"overly large memcpy.\"","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3764","reference_id":"","reference_type":"","scores":[{"value":"0.45627","scoring_system":"epss","scoring_elements":"0.97683","published_at":"2026-06-04T12:55:00Z"},{"value":"0.45627","scoring_system":"epss","scoring_elements":"0.97686","published_at":"2026-06-05T12:55:00Z"},{"value":"0.45627","scoring_system":"epss","scoring_elements":"0.97688","published_at":"2026-06-07T12:55:00Z"},{"value":"0.45627","scoring_system":"epss","scoring_elements":"0.97689","published_at":"2026-06-08T12:55:00Z"},{"value":"0.45627","scoring_system":"epss","scoring_elements":"0.9769","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3764"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/4196.c","reference_id":"CVE-2007-3764","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/4196.c"},{"reference_url":"https://security.gentoo.org/glsa/200802-11","reference_id":"GLSA-200802-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200802-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-3764"],"risk_score":0.8,"exploitability":"2.0","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fbh2-kfn9-z7fs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58916?format=json","vulnerability_id":"VCID-ffwt-4r8y-b3dj","summary":"channels/chan_sip.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Asterisk Business Edition C.3.x before C.3.7.5, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Asterisk Digiumphones 10.x.x-digiumphones before 10.5.2-digiumphones does not properly handle a provisional response to a SIP reINVITE request, which allows remote authenticated users to cause a denial of service (RTP port exhaustion) via sessions that lack final responses.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-3863","reference_id":"","reference_type":"","scores":[{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91734","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91745","published_at":"2026-06-05T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91748","published_at":"2026-06-06T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91744","published_at":"2026-06-07T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91742","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07186","scoring_system":"epss","scoring_elements":"0.91757","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-3863"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3863","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3863"},{"reference_url":"https://security.gentoo.org/glsa/201209-15","reference_id":"GLSA-201209-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201209-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-3863"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ffwt-4r8y-b3dj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58902?format=json","vulnerability_id":"VCID-fhr4-94gw-bfbu","summary":"chan_sip.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.7.1 and 10.x before 10.0.0-rc1 does not properly initialize variables during request parsing, which allows remote authenticated users to cause a denial of service (daemon crash) via a malformed request.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4063","reference_id":"","reference_type":"","scores":[{"value":"0.06434","scoring_system":"epss","scoring_elements":"0.91221","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06434","scoring_system":"epss","scoring_elements":"0.91233","published_at":"2026-06-06T12:55:00Z"},{"value":"0.06434","scoring_system":"epss","scoring_elements":"0.9123","published_at":"2026-06-07T12:55:00Z"},{"value":"0.06434","scoring_system":"epss","scoring_elements":"0.91226","published_at":"2026-06-08T12:55:00Z"},{"value":"0.06434","scoring_system":"epss","scoring_elements":"0.91241","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4063"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4063","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4063"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=647252","reference_id":"647252","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=647252"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-4063"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fhr4-94gw-bfbu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59137?format=json","vulnerability_id":"VCID-fvk6-m3pz-sybd","summary":"PJSIP is a free and open source multimedia communication library written in C. In versions of PJSIP prior to 2.13 the PJSIP parser, PJMEDIA RTP decoder, and PJMEDIA SDP parser are affeced by a buffer overflow vulnerability. Users connecting to untrusted clients are at risk. This issue has been patched and is available as commit c4d3498 in the master branch and will be included in releases 2.13 and later. Users are advised to upgrade. There are no known workarounds for this issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-39244","reference_id":"","reference_type":"","scores":[{"value":"0.00325","scoring_system":"epss","scoring_elements":"0.55755","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00325","scoring_system":"epss","scoring_elements":"0.55812","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00325","scoring_system":"epss","scoring_elements":"0.55817","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00325","scoring_system":"epss","scoring_elements":"0.55805","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00325","scoring_system":"epss","scoring_elements":"0.55786","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00325","scoring_system":"epss","scoring_elements":"0.55807","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706"},{"reference_url":"https://github.com/pjsip/pjproject/commit/c4d34984ec92b3d5252a7d5cddd85a1d3a8001ae","reference_id":"c4d34984ec92b3d5252a7d5cddd85a1d3a8001ae","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:48:20Z/"}],"url":"https://github.com/pjsip/pjproject/commit/c4d34984ec92b3d5252a7d5cddd85a1d3a8001ae"},{"reference_url":"https://www.debian.org/security/2023/dsa-5358","reference_id":"dsa-5358","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:48:20Z/"}],"url":"https://www.debian.org/security/2023/dsa-5358"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-fq45-m3f7-3mhj","reference_id":"GHSA-fq45-m3f7-3mhj","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:48:20Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-fq45-m3f7-3mhj"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:48:20Z/"}],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html","reference_id":"msg00029.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:48:20Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:48:20Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-39244"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fvk6-m3pz-sybd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59097?format=json","vulnerability_id":"VCID-fzjk-q6nw-jkg9","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. This issue is similar to GHSA-9pfh-r8x4-w26w. Possible buffer overread when parsing a certain STUN message. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB. The patch is available as commit in the master branch.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-23547","reference_id":"","reference_type":"","scores":[{"value":"0.00448","scoring_system":"epss","scoring_elements":"0.63857","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00448","scoring_system":"epss","scoring_elements":"0.639","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00448","scoring_system":"epss","scoring_elements":"0.63907","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00448","scoring_system":"epss","scoring_elements":"0.63898","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00448","scoring_system":"epss","scoring_elements":"0.63886","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00448","scoring_system":"epss","scoring_elements":"0.63906","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032092","reference_id":"1032092","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032092"},{"reference_url":"https://github.com/pjsip/pjproject/commit/bc4812d31a67d5e2f973fbfaf950d6118226cf36","reference_id":"bc4812d31a67d5e2f973fbfaf950d6118226cf36","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:11:54Z/"}],"url":"https://github.com/pjsip/pjproject/commit/bc4812d31a67d5e2f973fbfaf950d6118226cf36"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-9pfh-r8x4-w26w","reference_id":"GHSA-9pfh-r8x4-w26w","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:11:54Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-9pfh-r8x4-w26w"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-cxwq-5g9x-x7fr","reference_id":"GHSA-cxwq-5g9x-x7fr","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:11:54Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-cxwq-5g9x-x7fr"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-15T03:11:54Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-23547"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fzjk-q6nw-jkg9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59061?format=json","vulnerability_id":"VCID-g2xy-5xqx-xken","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In affected versions if the incoming STUN message contains an ERROR-CODE attribute, the header length is not checked before performing a subtraction operation, potentially resulting in an integer underflow scenario. This issue affects all users that use STUN. A malicious actor located within the victim’s network may forge and send a specially crafted UDP (STUN) message that could remotely execute arbitrary code on the victim’s machine. Users are advised to upgrade as soon as possible. There are no known workarounds.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37706","reference_id":"","reference_type":"","scores":[{"value":"0.00505","scoring_system":"epss","scoring_elements":"0.66556","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00505","scoring_system":"epss","scoring_elements":"0.66597","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00505","scoring_system":"epss","scoring_elements":"0.66604","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00505","scoring_system":"epss","scoring_elements":"0.6659","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00505","scoring_system":"epss","scoring_elements":"0.66575","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00505","scoring_system":"epss","scoring_elements":"0.66592","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"},{"reference_url":"https://usn.ubuntu.com/6422-2/","reference_id":"USN-6422-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-2/"},{"reference_url":"https://usn.ubuntu.com/8122-1/","reference_id":"USN-8122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8122-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-37706"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g2xy-5xqx-xken"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58869?format=json","vulnerability_id":"VCID-gnhb-813u-1qc2","summary":"The AsteriskGUI HTTP server in Asterisk Open Source 1.4.x before 1.4.19-rc3 and 1.6.x before 1.6.0-beta6, Business Edition C.x.x before C.1.6, AsteriskNOW before 1.0.2, Appliance Developer Kit before revision 104704, and s800i 1.0.x before 1.1.0.2 generates insufficiently random manager ID values, which makes it easier for remote attackers to hijack a manager session via a series of ID guesses.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1390.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1390.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1390","reference_id":"","reference_type":"","scores":[{"value":"0.03015","scoring_system":"epss","scoring_elements":"0.86857","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03015","scoring_system":"epss","scoring_elements":"0.86879","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03015","scoring_system":"epss","scoring_elements":"0.86877","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03015","scoring_system":"epss","scoring_elements":"0.86873","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03015","scoring_system":"epss","scoring_elements":"0.86864","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03015","scoring_system":"epss","scoring_elements":"0.86876","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1390"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1390","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1390"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=438131","reference_id":"438131","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=438131"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-1390"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gnhb-813u-1qc2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58908?format=json","vulnerability_id":"VCID-gra2-m4vj-57aa","summary":"Incomplete blacklist vulnerability in main/manager.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert6, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 allows remote authenticated users to execute arbitrary commands by leveraging originate privileges and providing an ExternalIVR value in an AMI Originate action.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2186","reference_id":"","reference_type":"","scores":[{"value":"0.00465","scoring_system":"epss","scoring_elements":"0.64713","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00465","scoring_system":"epss","scoring_elements":"0.64754","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00465","scoring_system":"epss","scoring_elements":"0.64764","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00465","scoring_system":"epss","scoring_elements":"0.64752","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00465","scoring_system":"epss","scoring_elements":"0.64742","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00465","scoring_system":"epss","scoring_elements":"0.64761","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2186"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470","reference_id":"680470","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470"},{"reference_url":"https://security.gentoo.org/glsa/201209-15","reference_id":"GLSA-201209-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201209-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-2186"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gra2-m4vj-57aa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58919?format=json","vulnerability_id":"VCID-gura-3nu8-mug1","summary":"Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk Digiumphones 10.x-digiumphones before 10.11.1-digiumphones, when anonymous calls are enabled, allow remote attackers to cause a denial of service (resource consumption) by making anonymous calls from multiple sources and consequently adding many entries to the device state cache.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-5977","reference_id":"","reference_type":"","scores":[{"value":"0.01103","scoring_system":"epss","scoring_elements":"0.78407","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01103","scoring_system":"epss","scoring_elements":"0.78435","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01103","scoring_system":"epss","scoring_elements":"0.78443","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01103","scoring_system":"epss","scoring_elements":"0.78433","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01103","scoring_system":"epss","scoring_elements":"0.78421","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01103","scoring_system":"epss","scoring_elements":"0.78439","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-5977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5977"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697230","reference_id":"697230","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697230"},{"reference_url":"https://security.gentoo.org/glsa/201401-15","reference_id":"GLSA-201401-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-5977"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gura-3nu8-mug1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58911?format=json","vulnerability_id":"VCID-hf8b-8hgv-xyhw","summary":"chan_sip.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.11.1 and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4, when the trustrpid option is enabled, allows remote authenticated users to cause a denial of service (daemon crash) by sending a SIP UPDATE message that triggers a connected-line update attempt without an associated channel.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2416","reference_id":"","reference_type":"","scores":[{"value":"0.05048","scoring_system":"epss","scoring_elements":"0.89939","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05048","scoring_system":"epss","scoring_elements":"0.89955","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05048","scoring_system":"epss","scoring_elements":"0.89952","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05048","scoring_system":"epss","scoring_elements":"0.89966","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2416"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2416","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2416"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670180","reference_id":"670180","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670180"},{"reference_url":"https://security.gentoo.org/glsa/201206-05","reference_id":"GLSA-201206-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-05"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-2416"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hf8b-8hgv-xyhw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59148?format=json","vulnerability_id":"VCID-hg7k-rqnx-nue9","summary":"PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.13 and prior affects applications that use PJSIP DNS resolver. It doesn't affect PJSIP users who do not utilise PJSIP DNS resolver. This vulnerability is related to CVE-2022-24793. The difference is that this issue is in parsing the query record `parse_query()`, while the issue in CVE-2022-24793 is in `parse_rr()`. A patch is available as commit `d1c5e4d` in the `master` branch. A workaround is to disable DNS resolution in PJSIP config (by setting `nameserver_count` to zero) or use an external resolver implementation instead.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-27585","reference_id":"","reference_type":"","scores":[{"value":"0.00537","scoring_system":"epss","scoring_elements":"0.67916","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00537","scoring_system":"epss","scoring_elements":"0.67915","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00537","scoring_system":"epss","scoring_elements":"0.679","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00537","scoring_system":"epss","scoring_elements":"0.67912","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00537","scoring_system":"epss","scoring_elements":"0.67922","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-27585"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27585","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27585"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036697","reference_id":"1036697","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036697"},{"reference_url":"https://github.com/pjsip/pjproject/commit/d1c5e4da5bae7f220bc30719888bb389c905c0c5","reference_id":"d1c5e4da5bae7f220bc30719888bb389c905c0c5","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-25T14:31:09Z/"}],"url":"https://github.com/pjsip/pjproject/commit/d1c5e4da5bae7f220bc30719888bb389c905c0c5"},{"reference_url":"https://www.debian.org/security/2023/dsa-5438","reference_id":"dsa-5438","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-25T14:31:09Z/"}],"url":"https://www.debian.org/security/2023/dsa-5438"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-p6g5-v97c-w5q4","reference_id":"GHSA-p6g5-v97c-w5q4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-25T14:31:09Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-p6g5-v97c-w5q4"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-q9cp-8wcq-7pfr","reference_id":"GHSA-q9cp-8wcq-7pfr","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-25T14:31:09Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-q9cp-8wcq-7pfr"},{"reference_url":"https://security.gentoo.org/glsa/202409-05","reference_id":"GLSA-202409-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202409-05"},{"reference_url":"https://www.pjsip.org/pjlib-util/docs/html/group__PJ__DNS__RESOLVER.htm","reference_id":"group__PJ__DNS__RESOLVER.htm","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-25T14:31:09Z/"}],"url":"https://www.pjsip.org/pjlib-util/docs/html/group__PJ__DNS__RESOLVER.htm"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/04/msg00020.html","reference_id":"msg00020.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-25T14:31:09Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/04/msg00020.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-25T14:31:09Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"},{"reference_url":"https://usn.ubuntu.com/6422-2/","reference_id":"USN-6422-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2023-27585"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hg7k-rqnx-nue9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58857?format=json","vulnerability_id":"VCID-hxjd-d7ht-cba2","summary":"The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and Asterisk Appliance Developer Kit before 0.6.0, when configured to allow unauthenticated calls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of calls that do not complete a 3-way handshake, which causes an ast_channel to be allocated but not released.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4103","reference_id":"","reference_type":"","scores":[{"value":"0.02623","scoring_system":"epss","scoring_elements":"0.85951","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02623","scoring_system":"epss","scoring_elements":"0.85973","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02623","scoring_system":"epss","scoring_elements":"0.85976","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02623","scoring_system":"epss","scoring_elements":"0.85972","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02623","scoring_system":"epss","scoring_elements":"0.85961","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02623","scoring_system":"epss","scoring_elements":"0.85975","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4103"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4103","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4103"},{"reference_url":"https://security.gentoo.org/glsa/200802-11","reference_id":"GLSA-200802-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200802-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-4103"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hxjd-d7ht-cba2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59015?format=json","vulnerability_id":"VCID-j37t-xmde-ybfz","summary":"Buffer overflow in res_pjsip_messaging in Digium Asterisk versions 13.21-cert3, 13.27.0, 15.7.2, 16.4.0 and earlier allows remote authenticated users to crash Asterisk by sending a specially crafted SIP MESSAGE message.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-12827","reference_id":"","reference_type":"","scores":[{"value":"0.18415","scoring_system":"epss","scoring_elements":"0.95357","published_at":"2026-06-04T12:55:00Z"},{"value":"0.18415","scoring_system":"epss","scoring_elements":"0.95365","published_at":"2026-06-05T12:55:00Z"},{"value":"0.18415","scoring_system":"epss","scoring_elements":"0.95367","published_at":"2026-06-06T12:55:00Z"},{"value":"0.18415","scoring_system":"epss","scoring_elements":"0.9537","published_at":"2026-06-08T12:55:00Z"},{"value":"0.18415","scoring_system":"epss","scoring_elements":"0.95374","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-12827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12827"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931980","reference_id":"931980","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931980"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2019-12827"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j37t-xmde-ybfz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59197?format=json","vulnerability_id":"VCID-jggd-7y6n-5kh6","summary":"Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, user supplied/control values for Cookies and any GET variable query Parameter are directly interpolated into the HTML of the page using ast_str_append. The endpoint at GET /httpstatus is the potential vulnerable endpoint relating to asterisk/main /http.c. This issue has been patched in versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23738","reference_id":"","reference_type":"","scores":[{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.1641","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16412","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16366","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22596","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22593","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23738"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23738","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23738"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127438","reference_id":"1127438","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127438"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-v6hp-wh3r-cwxh","reference_id":"GHSA-v6hp-wh3r-cwxh","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-06T17:43:40Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-v6hp-wh3r-cwxh"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2026-23738"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jggd-7y6n-5kh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58887?format=json","vulnerability_id":"VCID-jqj2-grqv-73ht","summary":"The design of the dialplan functionality in Asterisk Open Source 1.2.x, 1.4.x, and 1.6.x; and Asterisk Business Edition B.x.x and C.x.x, when using the ${EXTEN} channel variable and wildcard pattern matches, allows context-dependent attackers to inject strings into the dialplan using metacharacters that are injected when the variable is expanded, as demonstrated using the Dial application to process a crafted SIP INVITE message that adds an unintended outgoing channel leg.  NOTE: it could be argued that this is not a vulnerability in Asterisk, but a class of vulnerabilities that can occur in any program that uses this feature without the associated filtering functionality that is already available.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0685","reference_id":"","reference_type":"","scores":[{"value":"0.00101","scoring_system":"epss","scoring_elements":"0.27417","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00101","scoring_system":"epss","scoring_elements":"0.27484","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00101","scoring_system":"epss","scoring_elements":"0.27433","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00101","scoring_system":"epss","scoring_elements":"0.27394","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00101","scoring_system":"epss","scoring_elements":"0.27345","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00101","scoring_system":"epss","scoring_elements":"0.27352","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-0685"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0685","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0685"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2010-0685"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jqj2-grqv-73ht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59140?format=json","vulnerability_id":"VCID-jxc9-g6jq-ykes","summary":"PJSIP is a free and open source multimedia communication library written in C. When processing certain packets, PJSIP may incorrectly switch from using SRTP media transport to using basic RTP upon SRTP restart, causing the media to be sent insecurely. The vulnerability impacts all PJSIP users that use SRTP. The patch is available as commit d2acb9a in the master branch of the project and will be included in version 2.13. Users are advised to manually patch or to upgrade. There are no known workarounds for this vulnerability.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-39269","reference_id":"","reference_type":"","scores":[{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3789","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.37981","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.37984","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.37953","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.37918","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3793","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032092","reference_id":"1032092","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032092"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-37"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-39269"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jxc9-g6jq-ykes"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59189?format=json","vulnerability_id":"VCID-k18v-akzq-5qd4","summary":"Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 18.26.4 and 18.9-cert17, RTP UDP ports and internal resources can leak due to a lack of session termination. This could result in leaks and resource exhaustion. This issue has been patched in versions 18.26.4 and 18.9-cert17.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-54995","reference_id":"","reference_type":"","scores":[{"value":"0.01416","scoring_system":"epss","scoring_elements":"0.80945","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01416","scoring_system":"epss","scoring_elements":"0.80927","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01416","scoring_system":"epss","scoring_elements":"0.8093","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01416","scoring_system":"epss","scoring_elements":"0.80933","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01416","scoring_system":"epss","scoring_elements":"0.80931","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-54995"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54995","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54995"},{"reference_url":"https://github.com/asterisk/asterisk/commit/0278f5bde14565c6838a6ec39bc21aee0cde56a9","reference_id":"0278f5bde14565c6838a6ec39bc21aee0cde56a9","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-28T18:53:35Z/"}],"url":"https://github.com/asterisk/asterisk/commit/0278f5bde14565c6838a6ec39bc21aee0cde56a9"},{"reference_url":"https://github.com/asterisk/asterisk/pull/1405","reference_id":"1405","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-28T18:53:35Z/"}],"url":"https://github.com/asterisk/asterisk/pull/1405"},{"reference_url":"https://github.com/asterisk/asterisk/pull/1406","reference_id":"1406","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-28T18:53:35Z/"}],"url":"https://github.com/asterisk/asterisk/pull/1406"},{"reference_url":"https://github.com/asterisk/asterisk/commit/eafcd7a451dcd007dddf324ac37dd55a4808338d","reference_id":"eafcd7a451dcd007dddf324ac37dd55a4808338d","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-28T18:53:35Z/"}],"url":"https://github.com/asterisk/asterisk/commit/eafcd7a451dcd007dddf324ac37dd55a4808338d"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-557q-795j-wfx2","reference_id":"GHSA-557q-795j-wfx2","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-28T18:53:35Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-557q-795j-wfx2"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2025-54995"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k18v-akzq-5qd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59112?format=json","vulnerability_id":"VCID-kfga-1zjj-yyd2","summary":"PJSIP is a free and open source multimedia communication library written in C. PJSIP versions 2.12 and prior do not parse incoming RTCP feedback RPSI (Reference Picture Selection Indication) packet, but any app that directly uses pjmedia_rtcp_fb_parse_rpsi() will be affected. A patch is available in the `master` branch of the `pjsip/pjproject` GitHub repository. There are currently no known workarounds.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24786","reference_id":"","reference_type":"","scores":[{"value":"0.00738","scoring_system":"epss","scoring_elements":"0.73228","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00738","scoring_system":"epss","scoring_elements":"0.73265","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00738","scoring_system":"epss","scoring_elements":"0.7327","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00738","scoring_system":"epss","scoring_elements":"0.73253","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00738","scoring_system":"epss","scoring_elements":"0.7324","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00738","scoring_system":"epss","scoring_elements":"0.73264","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976","reference_id":"1014976","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-37"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-24786"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kfga-1zjj-yyd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59082?format=json","vulnerability_id":"VCID-ktdt-nt2k-ekh2","summary":"PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA and RTCP XR. A malicious actor can send a RTCP XR message with an invalid packet size.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43845","reference_id":"","reference_type":"","scores":[{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52258","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52318","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52325","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52305","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52276","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52297","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-43845"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ktdt-nt2k-ekh2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59093?format=json","vulnerability_id":"VCID-ky73-mqpf-97gy","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB. The patch is available as a commit in the master branch (2.13.1).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-23537","reference_id":"","reference_type":"","scores":[{"value":"0.00422","scoring_system":"epss","scoring_elements":"0.62372","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00422","scoring_system":"epss","scoring_elements":"0.62419","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00422","scoring_system":"epss","scoring_elements":"0.62427","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00422","scoring_system":"epss","scoring_elements":"0.62417","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00422","scoring_system":"epss","scoring_elements":"0.62402","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00422","scoring_system":"epss","scoring_elements":"0.62416","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032092","reference_id":"1032092","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032092"},{"reference_url":"https://github.com/pjsip/pjproject/commit/d8440f4d711a654b511f50f79c0445b26f9dd1e1","reference_id":"d8440f4d711a654b511f50f79c0445b26f9dd1e1","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T14:52:00Z/"}],"url":"https://github.com/pjsip/pjproject/commit/d8440f4d711a654b511f50f79c0445b26f9dd1e1"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-9pfh-r8x4-w26w","reference_id":"GHSA-9pfh-r8x4-w26w","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T14:52:00Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-9pfh-r8x4-w26w"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T14:52:00Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-23537"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ky73-mqpf-97gy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58871?format=json","vulnerability_id":"VCID-m43n-684g-9fg5","summary":"The IAX2 channel driver (chan_iax2) in Asterisk 1.2 before revision 72630 and 1.4 before revision 65679, when configured to allow unauthenticated calls, sends \"early audio\" to an unverified source IP address of a NEW message, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed NEW message.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1923","reference_id":"","reference_type":"","scores":[{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81608","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81638","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.8164","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81634","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81648","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1923"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-1923"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m43n-684g-9fg5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58944?format=json","vulnerability_id":"VCID-m9ex-4zdb-z7ek","summary":"Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x before 11.14.2, 12.x before 12.7.2, and 13.x before 13.0.2 and Certified Asterisk 11.6 before 11.6-cert9 allows remote attackers to cause a denial of service (crash) by sending a zero length frame after a non-zero length frame.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9374","reference_id":"","reference_type":"","scores":[{"value":"0.45774","scoring_system":"epss","scoring_elements":"0.97687","published_at":"2026-06-04T12:55:00Z"},{"value":"0.45774","scoring_system":"epss","scoring_elements":"0.97691","published_at":"2026-06-05T12:55:00Z"},{"value":"0.45774","scoring_system":"epss","scoring_elements":"0.97692","published_at":"2026-06-07T12:55:00Z"},{"value":"0.45774","scoring_system":"epss","scoring_elements":"0.97693","published_at":"2026-06-08T12:55:00Z"},{"value":"0.45774","scoring_system":"epss","scoring_elements":"0.97694","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-9374"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9374","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9374"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773230","reference_id":"773230","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773230"},{"reference_url":"https://security.gentoo.org/glsa/201412-51","reference_id":"GLSA-201412-51","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-51"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2014-9374"],"risk_score":0.2,"exploitability":"0.5","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m9ex-4zdb-z7ek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59115?format=json","vulnerability_id":"VCID-mmtv-ad5m-5bf1","summary":"PJSIP is a free and open source multimedia communication library written in C. A denial-of-service vulnerability affects applications on a 32-bit systems that use PJSIP versions 2.12 and prior to play/read invalid WAV files. The vulnerability occurs when reading WAV file data chunks with length greater than 31-bit integers. The vulnerability does not affect 64-bit apps and should not affect apps that only plays trusted WAV files. A patch is available on the `master` branch of the `pjsip/project` GitHub repository. As a workaround, apps can reject a WAV file received from an unknown source or validate the file first.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24792","reference_id":"","reference_type":"","scores":[{"value":"0.01612","scoring_system":"epss","scoring_elements":"0.82107","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01612","scoring_system":"epss","scoring_elements":"0.82136","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01612","scoring_system":"epss","scoring_elements":"0.82138","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01612","scoring_system":"epss","scoring_elements":"0.8214","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01612","scoring_system":"epss","scoring_elements":"0.82132","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01612","scoring_system":"epss","scoring_elements":"0.82147","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976","reference_id":"1014976","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976"},{"reference_url":"https://github.com/pjsip/pjproject/commit/947bc1ee6d05be10204b918df75a503415fd3213","reference_id":"947bc1ee6d05be10204b918df75a503415fd3213","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:55:19Z/"}],"url":"https://github.com/pjsip/pjproject/commit/947bc1ee6d05be10204b918df75a503415fd3213"},{"reference_url":"https://www.debian.org/security/2022/dsa-5285","reference_id":"dsa-5285","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:55:19Z/"}],"url":"https://www.debian.org/security/2022/dsa-5285"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-rwgw-vwxg-q799","reference_id":"GHSA-rwgw-vwxg-q799","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:55:19Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-rwgw-vwxg-q799"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:55:19Z/"}],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:55:19Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00047.html","reference_id":"msg00047.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:55:19Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/05/msg00047.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-24792"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mmtv-ad5m-5bf1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58941?format=json","vulnerability_id":"VCID-mszp-vjvd-y7bm","summary":"ConfBridge in Asterisk 11.x before 11.14.1, 12.x before 12.7.1, and 13.x before 13.0.1 and Certified Asterisk 11.6 before 11.6-cert8 allows remote authenticated users to (1) gain privileges via vectors related to an external protocol to the CONFBRIDGE dialplan function or (2) execute arbitrary system commands via a crafted ConfbridgeStartRecord AMI action.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8417","reference_id":"","reference_type":"","scores":[{"value":"0.00897","scoring_system":"epss","scoring_elements":"0.76012","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00897","scoring_system":"epss","scoring_elements":"0.76037","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00897","scoring_system":"epss","scoring_elements":"0.7603","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00897","scoring_system":"epss","scoring_elements":"0.76016","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00897","scoring_system":"epss","scoring_elements":"0.76041","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8417"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8417","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8417"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771463","reference_id":"771463","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=771463"},{"reference_url":"https://security.gentoo.org/glsa/201412-51","reference_id":"GLSA-201412-51","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201412-51"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2014-8417"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mszp-vjvd-y7bm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59125?format=json","vulnerability_id":"VCID-mv3r-bq3z-ekby","summary":"An SSRF issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it's possible to send arbitrary requests (such as GET) to interfaces such as localhost by using the Identity header. This is fixed in 16.25.2, 18.11.2, and 19.3.2.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-26499","reference_id":"","reference_type":"","scores":[{"value":"0.01464","scoring_system":"epss","scoring_elements":"0.8122","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01464","scoring_system":"epss","scoring_elements":"0.81248","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01464","scoring_system":"epss","scoring_elements":"0.8125","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01464","scoring_system":"epss","scoring_elements":"0.81247","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01464","scoring_system":"epss","scoring_elements":"0.81243","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01464","scoring_system":"epss","scoring_elements":"0.8126","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-26499"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mv3r-bq3z-ekby"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58905?format=json","vulnerability_id":"VCID-n31e-a95y-pqag","summary":"chan_sip.c in Asterisk Open Source 1.8.x before 1.8.8.2 and 10.x before 10.0.1, when the res_srtp module is used and media support is improperly configured, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted SDP message with a crypto attribute and a (1) video or (2) text media type, as demonstrated by CSipSimple.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0885","reference_id":"","reference_type":"","scores":[{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77952","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.7798","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77986","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77976","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77966","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01057","scoring_system":"epss","scoring_elements":"0.77983","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0885"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656596","reference_id":"656596","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656596"},{"reference_url":"https://security.gentoo.org/glsa/201202-06","reference_id":"GLSA-201202-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201202-06"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-0885"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n31e-a95y-pqag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59160?format=json","vulnerability_id":"VCID-n51b-qqvd-j3h8","summary":"Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1; as well as certified-asterisk prior to 18.9-cert6; Asterisk is susceptible to a DoS due to a race condition in the hello handshake phase of the DTLS protocol when handling DTLS-SRTP for media setup. This attack can be done continuously, thus denying new DTLS-SRTP encrypted calls during the attack. Abuse of this vulnerability may lead to a massive Denial of Service on vulnerable Asterisk servers for calls that rely on DTLS-SRTP. Commit d7d7764cb07c8a1872804321302ef93bf62cba05 contains a fix, which is part of versions 18.20.1, 20.5.1, 21.0.1, amd 18.9-cert6.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-49786","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22962","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23071","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23058","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23013","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.22959","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-49786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38703","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38703"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49786"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059033","reference_id":"1059033","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059033"},{"reference_url":"http://seclists.org/fulldisclosure/2023/Dec/24","reference_id":"24","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-08T14:19:55Z/"}],"url":"http://seclists.org/fulldisclosure/2023/Dec/24"},{"reference_url":"http://www.openwall.com/lists/oss-security/2023/12/15/7","reference_id":"7","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-08T14:19:55Z/"}],"url":"http://www.openwall.com/lists/oss-security/2023/12/15/7"},{"reference_url":"http://packetstormsecurity.com/files/176251/Asterisk-20.1.0-Denial-Of-Service.html","reference_id":"Asterisk-20.1.0-Denial-Of-Service.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-08T14:19:55Z/"}],"url":"http://packetstormsecurity.com/files/176251/Asterisk-20.1.0-Denial-Of-Service.html"},{"reference_url":"https://github.com/asterisk/asterisk/commit/d7d7764cb07c8a1872804321302ef93bf62cba05","reference_id":"d7d7764cb07c8a1872804321302ef93bf62cba05","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-08T14:19:55Z/"}],"url":"https://github.com/asterisk/asterisk/commit/d7d7764cb07c8a1872804321302ef93bf62cba05"},{"reference_url":"https://github.com/EnableSecurity/advisories/tree/master/ES2023-01-asterisk-dtls-hello-race","reference_id":"ES2023-01-asterisk-dtls-hello-race","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-08T14:19:55Z/"}],"url":"https://github.com/EnableSecurity/advisories/tree/master/ES2023-01-asterisk-dtls-hello-race"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-hxj9-xwr8-w8pq","reference_id":"GHSA-hxj9-xwr8-w8pq","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-08T14:19:55Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-hxj9-xwr8-w8pq"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/12/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-08T14:19:55Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/12/msg00019.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196088?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-341r-eamh-fbee"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u4"}],"aliases":["CVE-2023-49786"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n51b-qqvd-j3h8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59109?format=json","vulnerability_id":"VCID-nkdv-45yg-yqen","summary":"PJSIP is a free and open source multimedia communication library written in C. Versions 2.12 and prior contain a stack buffer overflow vulnerability that affects PJSUA2 users or users that call the API `pjmedia_sdp_print(), pjmedia_sdp_media_print()`. Applications that do not use PJSUA2 and do not directly call `pjmedia_sdp_print()` or `pjmedia_sdp_media_print()` should not be affected. A patch is available on the `master` branch of the `pjsip/pjproject` GitHub repository. There are currently no known workarounds.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24764","reference_id":"","reference_type":"","scores":[{"value":"0.01506","scoring_system":"epss","scoring_elements":"0.815","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01506","scoring_system":"epss","scoring_elements":"0.81528","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01506","scoring_system":"epss","scoring_elements":"0.8153","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01506","scoring_system":"epss","scoring_elements":"0.81523","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01506","scoring_system":"epss","scoring_elements":"0.81538","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976","reference_id":"1014976","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014976"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://github.com/pjsip/pjproject/commit/560a1346f87aabe126509bb24930106dea292b00","reference_id":"560a1346f87aabe126509bb24930106dea292b00","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:28Z/"}],"url":"https://github.com/pjsip/pjproject/commit/560a1346f87aabe126509bb24930106dea292b00"},{"reference_url":"https://www.debian.org/security/2022/dsa-5285","reference_id":"dsa-5285","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:28Z/"}],"url":"https://www.debian.org/security/2022/dsa-5285"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-f5qg-pqcg-765m","reference_id":"GHSA-f5qg-pqcg-765m","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:28Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-f5qg-pqcg-765m"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:28Z/"}],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:28Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html","reference_id":"msg00035.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:28Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-23T15:56:28Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-24764"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nkdv-45yg-yqen"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59064?format=json","vulnerability_id":"VCID-nq8x-bhsd-4ug6","summary":"Stack overflow in PJSUA API when calling pjsua_player_create. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43299","reference_id":"","reference_type":"","scores":[{"value":"0.00377","scoring_system":"epss","scoring_elements":"0.59595","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00377","scoring_system":"epss","scoring_elements":"0.59645","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00377","scoring_system":"epss","scoring_elements":"0.59648","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00377","scoring_system":"epss","scoring_elements":"0.5964","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00377","scoring_system":"epss","scoring_elements":"0.5962","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00377","scoring_system":"epss","scoring_elements":"0.59639","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"},{"reference_url":"https://usn.ubuntu.com/8122-1/","reference_id":"USN-8122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8122-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-43299"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nq8x-bhsd-4ug6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58980?format=json","vulnerability_id":"VCID-nv71-45bm-4qg8","summary":"An issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. A memory leak occurs when an Asterisk pjsip session object is created and that call gets rejected before the session itself is fully established. When this happens the session object never gets destroyed. Eventually Asterisk can run out of memory and crash.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-16672","reference_id":"","reference_type":"","scores":[{"value":"0.05269","scoring_system":"epss","scoring_elements":"0.90165","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05269","scoring_system":"epss","scoring_elements":"0.90181","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05269","scoring_system":"epss","scoring_elements":"0.90179","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05269","scoring_system":"epss","scoring_elements":"0.90178","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05269","scoring_system":"epss","scoring_elements":"0.90176","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05269","scoring_system":"epss","scoring_elements":"0.90192","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-16672"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16672","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16672"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881256","reference_id":"881256","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881256"},{"reference_url":"https://security.gentoo.org/glsa/201811-11","reference_id":"GLSA-201811-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201811-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-16672"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nv71-45bm-4qg8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58970?format=json","vulnerability_id":"VCID-pdq4-837m-j3b9","summary":"In res/res_rtp_asterisk.c in Asterisk 11.x before 11.25.2, 13.x before 13.17.1, and 14.x before 14.6.1 and Certified Asterisk 11.x before 11.6-cert17 and 13.x before 13.13-cert5, unauthorized data disclosure (media takeover in the RTP stack) is possible with careful timing by an attacker. The \"strictrtp\" option in rtp.conf enables a feature of the RTP stack that learns the source address of media for a session and drops any packets that do not originate from the expected address. This option is enabled by default in Asterisk 11 and above. The \"nat\" and \"rtp_symmetric\" options (for chan_sip and chan_pjsip, respectively) enable symmetric RTP support in the RTP stack. This uses the source address of incoming media as the target address of any sent media. This option is not enabled by default, but is commonly enabled to handle devices behind NAT. A change was made to the strict RTP support in the RTP stack to better tolerate late media when a reinvite occurs. When combined with the symmetric RTP support, this introduced an avenue where media could be hijacked. Instead of only learning a new address when expected, the new code allowed a new source address to be learned at all times. If a flood of RTP traffic was received, the strict RTP support would allow the new address to provide media, and (with symmetric RTP enabled) outgoing traffic would be sent to this new address, allowing the media to be hijacked. Provided the attacker continued to send traffic, they would continue to receive traffic as well.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-14099","reference_id":"","reference_type":"","scores":[{"value":"0.00368","scoring_system":"epss","scoring_elements":"0.58997","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00368","scoring_system":"epss","scoring_elements":"0.59045","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00368","scoring_system":"epss","scoring_elements":"0.5905","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00368","scoring_system":"epss","scoring_elements":"0.59041","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00368","scoring_system":"epss","scoring_elements":"0.59025","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00368","scoring_system":"epss","scoring_elements":"0.59042","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-14099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14100"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873907","reference_id":"873907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873907"},{"reference_url":"https://security.gentoo.org/glsa/201710-29","reference_id":"GLSA-201710-29","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-29"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271615?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-14099"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pdq4-837m-j3b9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58952?format=json","vulnerability_id":"VCID-pqe1-z1sj-xub6","summary":"Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and Certified Asterisk 1.8.28, 11.6 before 11.6-cert12, and 13.1 before 13.1-cert3 allow remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via a zero length error correcting redundancy packet for a UDPTL FAX packet that is lost.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2232","reference_id":"","reference_type":"","scores":[{"value":"0.07852","scoring_system":"epss","scoring_elements":"0.92142","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07852","scoring_system":"epss","scoring_elements":"0.92154","published_at":"2026-06-05T12:55:00Z"},{"value":"0.07852","scoring_system":"epss","scoring_elements":"0.92152","published_at":"2026-06-06T12:55:00Z"},{"value":"0.07852","scoring_system":"epss","scoring_elements":"0.9215","published_at":"2026-06-07T12:55:00Z"},{"value":"0.07852","scoring_system":"epss","scoring_elements":"0.92151","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07852","scoring_system":"epss","scoring_elements":"0.92165","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-2232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2316"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7551","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7551"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271615?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2016-2232"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pqe1-z1sj-xub6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59039?format=json","vulnerability_id":"VCID-qagm-1qhg-euga","summary":"A res_pjsip_session crash was discovered in Asterisk Open Source 13.x before 13.37.1, 16.x before 16.14.1, 17.x before 17.8.1, and 18.x before 18.0.1. and Certified Asterisk before 16.8-cert5. Upon receiving a new SIP Invite, Asterisk did not return the created dialog locked or referenced. This caused a gap between the creation of the dialog object, and its next use by the thread that created it. Depending on some off-nominal circumstances and timing, it was possible for another thread to free said dialog in this gap. Asterisk could then crash when the dialog object, or any of its dependent objects, were dereferenced or accessed next by the initial-creation thread. Note, however, that this crash can only occur when using a connection-oriented protocol (e.g., TCP or TLS, but not UDP) for SIP transport. Also, the remote client must be authenticated, or Asterisk must be configured for anonymous calling.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-28327","reference_id":"","reference_type":"","scores":[{"value":"0.02188","scoring_system":"epss","scoring_elements":"0.84687","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02188","scoring_system":"epss","scoring_elements":"0.84711","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02188","scoring_system":"epss","scoring_elements":"0.84715","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02188","scoring_system":"epss","scoring_elements":"0.84709","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02188","scoring_system":"epss","scoring_elements":"0.84697","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02188","scoring_system":"epss","scoring_elements":"0.8471","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-28327"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28327","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28327"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=974712","reference_id":"974712","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=974712"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2020-28327"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qagm-1qhg-euga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59182?format=json","vulnerability_id":"VCID-qfwp-7bsd-rfdy","summary":"Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, trying to disallow shell commands to be run via the Asterisk command line interface (CLI) by configuring `cli_permissions.conf` (e.g. with the config line `deny=!*`) does not work which could lead to a security risk. If an administrator running an Asterisk instance relies on the `cli_permissions.conf` file to work and expects it to deny all attempts to execute shell commands, then this could lead to a security vulnerability. Versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk fix the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-47780","reference_id":"","reference_type":"","scores":[{"value":"0.00454","scoring_system":"epss","scoring_elements":"0.64172","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00454","scoring_system":"epss","scoring_elements":"0.64149","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00454","scoring_system":"epss","scoring_elements":"0.64169","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00454","scoring_system":"epss","scoring_elements":"0.64164","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00454","scoring_system":"epss","scoring_elements":"0.64161","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-47780"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47780","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-47780"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106530","reference_id":"1106530","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106530"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-c7p6-7mvq-8jq2","reference_id":"GHSA-c7p6-7mvq-8jq2","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-22T17:24:44Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-c7p6-7mvq-8jq2"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2025-47780"],"risk_score":2.1,"exploitability":"0.5","weighted_severity":"4.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qfwp-7bsd-rfdy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59058?format=json","vulnerability_id":"VCID-qktv-zzmr-ebfx","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP before version 2.11.1, there are a couple of issues found in the SSL socket. First, a race condition between callback and destroy, due to the accepted socket having no group lock. Second, the SSL socket parent/listener may get destroyed during handshake. Both issues were reported to happen intermittently in heavy load TLS connections. They cause a crash, resulting in a denial of service. These are fixed in version 2.11.1.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32686","reference_id":"","reference_type":"","scores":[{"value":"0.01675","scoring_system":"epss","scoring_elements":"0.8249","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01675","scoring_system":"epss","scoring_elements":"0.82519","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01675","scoring_system":"epss","scoring_elements":"0.82518","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01675","scoring_system":"epss","scoring_elements":"0.82516","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01675","scoring_system":"epss","scoring_elements":"0.82509","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01675","scoring_system":"epss","scoring_elements":"0.82522","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-32686"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32558","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32558"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32686","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32686"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991931","reference_id":"991931","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991931"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://usn.ubuntu.com/8122-1/","reference_id":"USN-8122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8122-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-32686"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qktv-zzmr-ebfx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58904?format=json","vulnerability_id":"VCID-quty-k7e9-kbbm","summary":"The handle_request_info function in channels/chan_sip.c in Asterisk Open Source 1.6.2.x before 1.6.2.21 and 1.8.x before 1.8.7.2, when automon is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted sequence of SIP requests.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4598","reference_id":"","reference_type":"","scores":[{"value":"0.00634","scoring_system":"epss","scoring_elements":"0.70768","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00634","scoring_system":"epss","scoring_elements":"0.7081","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00634","scoring_system":"epss","scoring_elements":"0.70817","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00634","scoring_system":"epss","scoring_elements":"0.708","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00634","scoring_system":"epss","scoring_elements":"0.70787","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00634","scoring_system":"epss","scoring_elements":"0.70811","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4598"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4598","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4598"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651552","reference_id":"651552","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651552"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-4598"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-quty-k7e9-kbbm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59005?format=json","vulnerability_id":"VCID-qx2s-jc4s-akcy","summary":"A Buffer Overflow issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. When processing a SUBSCRIBE request, the res_pjsip_pubsub module stores the accepted formats present in the Accept headers of the request. This code did not limit the number of headers it processed, despite having a fixed limit of 32. If more than 32 Accept headers were present, the code would write outside of its memory and cause a crash.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7284","reference_id":"","reference_type":"","scores":[{"value":"0.65243","scoring_system":"epss","scoring_elements":"0.98499","published_at":"2026-06-04T12:55:00Z"},{"value":"0.65243","scoring_system":"epss","scoring_elements":"0.98502","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-7284"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891227","reference_id":"891227","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891227"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44184.py","reference_id":"CVE-2018-7284","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44184.py"},{"reference_url":"https://raw.githubusercontent.com/EnableSecurity/advisories/master/ES2018-01-asterisk-pjsip-subscribe-stack-corruption/README.md","reference_id":"CVE-2018-7284","reference_type":"exploit","scores":[],"url":"https://raw.githubusercontent.com/EnableSecurity/advisories/master/ES2018-01-asterisk-pjsip-subscribe-stack-corruption/README.md"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2018-7284"],"risk_score":1.2,"exploitability":"2.0","weighted_severity":"0.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qx2s-jc4s-akcy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59073?format=json","vulnerability_id":"VCID-rgqf-d63e-3be8","summary":"Read out-of-bounds in PJSUA API when calling pjsua_recorder_create. An attacker-controlled 'filename' argument may cause an out-of-bounds read when the filename is shorter than 4 characters.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43302","reference_id":"","reference_type":"","scores":[{"value":"0.00321","scoring_system":"epss","scoring_elements":"0.55398","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00321","scoring_system":"epss","scoring_elements":"0.55455","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00321","scoring_system":"epss","scoring_elements":"0.5546","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00321","scoring_system":"epss","scoring_elements":"0.55448","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00321","scoring_system":"epss","scoring_elements":"0.55429","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"},{"reference_url":"https://usn.ubuntu.com/8122-1/","reference_id":"USN-8122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8122-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-43302"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rgqf-d63e-3be8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59168?format=json","vulnerability_id":"VCID-rhej-23wp-v7cj","summary":"Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.24.3, 20.9.3, and 21.4.3 of Asterisk and versions 18.9-cert12 and 20.7-cert2 of certified-asterisk, if Asterisk attempts to send a SIP request to a URI whose host portion starts with `.1` or `[.1]`, and res_resolver_unbound is loaded, Asterisk will crash with a SEGV. To receive a patch, users should upgrade to one of the following versions: 18.24.3, 20.9.3, 21.4.3, certified-18.9-cert12, certified-20.7-cert2. Two workarounds are available. Disable res_resolver_unbound by setting `noload = res_resolver_unbound.so` in modules.conf, or set `rewrite_contact = yes` on all PJSIP endpoints. NOTE: This may not be appropriate for all Asterisk configurations.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-42491","reference_id":"","reference_type":"","scores":[{"value":"0.00963","scoring_system":"epss","scoring_elements":"0.76915","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00963","scoring_system":"epss","scoring_elements":"0.76922","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00963","scoring_system":"epss","scoring_elements":"0.769","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00963","scoring_system":"epss","scoring_elements":"0.76912","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00963","scoring_system":"epss","scoring_elements":"0.76923","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-42491"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42491","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42491"},{"reference_url":"https://github.com/asterisk/asterisk/commit/42a2f4ccfa2c7062a15063e765916b3332e34cc4","reference_id":"42a2f4ccfa2c7062a15063e765916b3332e34cc4","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-05T18:48:24Z/"}],"url":"https://github.com/asterisk/asterisk/commit/42a2f4ccfa2c7062a15063e765916b3332e34cc4"},{"reference_url":"https://github.com/asterisk/asterisk/commit/4f01669c7c41c9184f3cce9a3cf1b2ebf6201742","reference_id":"4f01669c7c41c9184f3cce9a3cf1b2ebf6201742","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-05T18:48:24Z/"}],"url":"https://github.com/asterisk/asterisk/commit/4f01669c7c41c9184f3cce9a3cf1b2ebf6201742"},{"reference_url":"https://github.com/asterisk/asterisk/commit/50bf8d4d3064930d28ecf1ce3397b14574d514d2","reference_id":"50bf8d4d3064930d28ecf1ce3397b14574d514d2","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-05T18:48:24Z/"}],"url":"https://github.com/asterisk/asterisk/commit/50bf8d4d3064930d28ecf1ce3397b14574d514d2"},{"reference_url":"https://github.com/asterisk/asterisk/commit/7a0090325bfa9d778a39ae5f7d0a98109e4651c8","reference_id":"7a0090325bfa9d778a39ae5f7d0a98109e4651c8","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-05T18:48:24Z/"}],"url":"https://github.com/asterisk/asterisk/commit/7a0090325bfa9d778a39ae5f7d0a98109e4651c8"},{"reference_url":"https://github.com/asterisk/asterisk/commit/a15050650abf09c10a3c135fab148220cd41d3a0","reference_id":"a15050650abf09c10a3c135fab148220cd41d3a0","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-05T18:48:24Z/"}],"url":"https://github.com/asterisk/asterisk/commit/a15050650abf09c10a3c135fab148220cd41d3a0"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-v428-g3cw-7hv9","reference_id":"GHSA-v428-g3cw-7hv9","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-05T18:48:24Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-v428-g3cw-7hv9"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2024-42491"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rhej-23wp-v7cj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58861?format=json","vulnerability_id":"VCID-rhys-s4x1-6ba5","summary":"Multiple buffer overflows in the voicemail functionality in Asterisk 1.4.x before 1.4.13, when using IMAP storage, might allow (1) remote attackers to execute arbitrary code via a long combination of Content-type and Content-description headers, or (2) local users to execute arbitrary code via a long combination of astspooldir, voicemail context, and voicemail mailbox fields.  NOTE: vector 2 requires write access to Asterisk configuration files.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5358","reference_id":"","reference_type":"","scores":[{"value":"0.00718","scoring_system":"epss","scoring_elements":"0.72811","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00718","scoring_system":"epss","scoring_elements":"0.72849","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00718","scoring_system":"epss","scoring_elements":"0.72856","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00718","scoring_system":"epss","scoring_elements":"0.72839","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00718","scoring_system":"epss","scoring_elements":"0.72827","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00718","scoring_system":"epss","scoring_elements":"0.72851","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5358"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5358","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5358"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-5358"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rhys-s4x1-6ba5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59085?format=json","vulnerability_id":"VCID-rjjh-8qvd-mug4","summary":"res_pjsip_t38 in Sangoma Asterisk 16.x before 16.16.2, 17.x before 17.9.3, and 18.x before 18.2.2, and Certified Asterisk before 16.8-cert7, allows an attacker to trigger a crash by sending an m=image line and zero port in a response to a T.38 re-invite initiated by Asterisk. This is a re-occurrence of the CVE-2019-15297 symptoms but not for exactly the same reason. The crash occurs because there is an append operation relative to the active topology, but this should instead be a replace operation.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-46837","reference_id":"","reference_type":"","scores":[{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.32518","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.3259","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.32558","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.32519","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.32488","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00134","scoring_system":"epss","scoring_elements":"0.32509","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018073","reference_id":"1018073","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018073"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-46837"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rjjh-8qvd-mug4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59165?format=json","vulnerability_id":"VCID-rskg-bn1a-sud4","summary":"Asterisk is an open source private branch exchange (PBX) and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an AMI user with `write=originate` may change all configuration files in the `/etc/asterisk/` directory. This occurs because they are able to curl remote files and write them to disk, but are also able to append to existing files using the `FILE` function inside the `SET` application. This issue may result in privilege escalation, remote code execution and/or blind server-side request forgery with arbitrary protocol. Asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2 contain a fix for this issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-42365","reference_id":"","reference_type":"","scores":[{"value":"0.3195","scoring_system":"epss","scoring_elements":"0.96915","published_at":"2026-06-06T12:55:00Z"},{"value":"0.3195","scoring_system":"epss","scoring_elements":"0.9692","published_at":"2026-06-09T12:55:00Z"},{"value":"0.3195","scoring_system":"epss","scoring_elements":"0.96912","published_at":"2026-06-05T12:55:00Z"},{"value":"0.3195","scoring_system":"epss","scoring_elements":"0.96916","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-42365"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42365","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42365"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078574","reference_id":"1078574","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078574"},{"reference_url":"https://github.com/asterisk/asterisk/commit/42a2f4ccfa2c7062a15063e765916b3332e34cc4","reference_id":"42a2f4ccfa2c7062a15063e765916b3332e34cc4","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T16:38:45Z/"}],"url":"https://github.com/asterisk/asterisk/commit/42a2f4ccfa2c7062a15063e765916b3332e34cc4"},{"reference_url":"https://github.com/asterisk/asterisk/commit/7a0090325bfa9d778a39ae5f7d0a98109e4651c8","reference_id":"7a0090325bfa9d778a39ae5f7d0a98109e4651c8","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T16:38:45Z/"}],"url":"https://github.com/asterisk/asterisk/commit/7a0090325bfa9d778a39ae5f7d0a98109e4651c8"},{"reference_url":"https://github.com/asterisk/asterisk/commit/b4063bf756272254b160b6d1bd6e9a3f8e16cc71","reference_id":"b4063bf756272254b160b6d1bd6e9a3f8e16cc71","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T16:38:45Z/"}],"url":"https://github.com/asterisk/asterisk/commit/b4063bf756272254b160b6d1bd6e9a3f8e16cc71"},{"reference_url":"https://github.com/asterisk/asterisk/commit/bbe68db10ab8a80c29db383e4dfe14f6eafaf993","reference_id":"bbe68db10ab8a80c29db383e4dfe14f6eafaf993","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T16:38:45Z/"}],"url":"https://github.com/asterisk/asterisk/commit/bbe68db10ab8a80c29db383e4dfe14f6eafaf993"},{"reference_url":"https://github.com/asterisk/asterisk/commit/faddd99f2b9408b524e5eb8a01589fe1fa282df2","reference_id":"faddd99f2b9408b524e5eb8a01589fe1fa282df2","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T16:38:45Z/"}],"url":"https://github.com/asterisk/asterisk/commit/faddd99f2b9408b524e5eb8a01589fe1fa282df2"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-c4cg-9275-6w44","reference_id":"GHSA-c4cg-9275-6w44","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T16:38:45Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-c4cg-9275-6w44"},{"reference_url":"https://github.com/asterisk/asterisk/blob/14367caaf7241df1eceea7c45c5b261989c2c6db/main/manager.c#L6426","reference_id":"manager.c#L6426","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T16:38:45Z/"}],"url":"https://github.com/asterisk/asterisk/blob/14367caaf7241df1eceea7c45c5b261989c2c6db/main/manager.c#L6426"},{"reference_url":"https://github.com/asterisk/asterisk/blob/7d28165cb1b2d02d66e8693bd3fe23ee72fc55d8/main/manager.c#L6426","reference_id":"manager.c#L6426","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-08T16:38:45Z/"}],"url":"https://github.com/asterisk/asterisk/blob/7d28165cb1b2d02d66e8693bd3fe23ee72fc55d8/main/manager.c#L6426"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2024-42365"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rskg-bn1a-sud4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59157?format=json","vulnerability_id":"VCID-ru68-dmrf-bfbx","summary":"Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1, as well as certified-asterisk prior to 18.9-cert6, it is possible to read any arbitrary file even when the `live_dangerously` is not enabled. This allows arbitrary files to be read. Asterisk versions 18.20.1, 20.5.1, and 21.0.1, as well as certified-asterisk prior to 18.9-cert6, contain a fix for this issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-49294","reference_id":"","reference_type":"","scores":[{"value":"0.17085","scoring_system":"epss","scoring_elements":"0.9513","published_at":"2026-06-06T12:55:00Z"},{"value":"0.17085","scoring_system":"epss","scoring_elements":"0.95132","published_at":"2026-06-07T12:55:00Z"},{"value":"0.17085","scoring_system":"epss","scoring_elements":"0.95131","published_at":"2026-06-08T12:55:00Z"},{"value":"0.17085","scoring_system":"epss","scoring_elements":"0.95136","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-49294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38703","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38703"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49786"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059032","reference_id":"1059032","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059032"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196088?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-341r-eamh-fbee"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u4"}],"aliases":["CVE-2023-49294"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ru68-dmrf-bfbx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58917?format=json","vulnerability_id":"VCID-rvpk-fjgv-6uah","summary":"channels/chan_iax2.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiumphones, and Asterisk Business Edition C.3.x before C.3.7.6 does not enforce ACL rules during certain uses of peer credentials, which allows remote authenticated users to bypass intended outbound-call restrictions by leveraging the availability of these credentials.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-4737","reference_id":"","reference_type":"","scores":[{"value":"0.01504","scoring_system":"epss","scoring_elements":"0.81491","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01504","scoring_system":"epss","scoring_elements":"0.81519","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01504","scoring_system":"epss","scoring_elements":"0.81521","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01504","scoring_system":"epss","scoring_elements":"0.81514","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01504","scoring_system":"epss","scoring_elements":"0.81529","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-4737"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4737","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4737"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470","reference_id":"680470","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470"},{"reference_url":"https://security.gentoo.org/glsa/201209-15","reference_id":"GLSA-201209-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201209-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-4737"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rvpk-fjgv-6uah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58868?format=json","vulnerability_id":"VCID-rxy8-6uup-myhg","summary":"Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote attackers to execute arbitrary code via logging messages that are not properly handled by (1) the ast_verbose logging API call, or (2) the astman_append function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1333.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1333.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1333","reference_id":"","reference_type":"","scores":[{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.8737","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.87392","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.87389","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.87386","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03255","scoring_system":"epss","scoring_elements":"0.87398","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1333"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1333","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1333"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=438130","reference_id":"438130","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=438130"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-1333"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rxy8-6uup-myhg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58859?format=json","vulnerability_id":"VCID-rxym-j9ke-4uhx","summary":"The SIP channel driver (chan_sip) in Asterisk Open Source 1.4.x before 1.4.11, AsteriskNOW before beta7, Asterisk Appliance Developer Kit 0.x before 0.8.0, and s800i (Asterisk Appliance) 1.x before 1.0.3 allows remote attackers to cause a denial of service (memory exhaustion) via a SIP dialog that causes a large number of history entries to be created.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4455","reference_id":"","reference_type":"","scores":[{"value":"0.05232","scoring_system":"epss","scoring_elements":"0.90128","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05232","scoring_system":"epss","scoring_elements":"0.90145","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05232","scoring_system":"epss","scoring_elements":"0.90143","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05232","scoring_system":"epss","scoring_elements":"0.90142","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05232","scoring_system":"epss","scoring_elements":"0.9014","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05232","scoring_system":"epss","scoring_elements":"0.90156","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4455"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4455","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4455"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-4455"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rxym-j9ke-4uhx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58964?format=json","vulnerability_id":"VCID-ryqs-4pz8-3fev","summary":"An issue was discovered in Asterisk Open Source 11.x before 11.25.1, 13.x before 13.13.1, and 14.x before 14.2.1 and Certified Asterisk 11.x before 11.6-cert16 and 13.x before 13.8-cert4. The chan_sip channel driver has a liberal definition for whitespace when attempting to strip the content between a SIP header name and a colon character. Rather than following RFC 3261 and stripping only spaces and horizontal tabs, Asterisk treats any non-printable ASCII character as if it were whitespace. This means that headers such as Contact\\x01: will be seen as a valid Contact header. This mostly does not pose a problem until Asterisk is placed in tandem with an authenticating SIP proxy. In such a case, a crafty combination of valid and invalid To headers can cause a proxy to allow an INVITE request into Asterisk without authentication since it believes the request is an in-dialog request. However, because of the bug described above, the request will look like an out-of-dialog request to Asterisk. Asterisk will then process the request as a new call. The result is that Asterisk can process calls from unvetted sources without any authentication. If you do not use a proxy for authentication, then this issue does not affect you. If your proxy is dialog-aware (meaning that the proxy keeps track of what dialogs are currently valid), then this issue does not affect you. If you use chan_pjsip instead of chan_sip, then this issue does not affect you.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9938","reference_id":"","reference_type":"","scores":[{"value":"0.01419","scoring_system":"epss","scoring_elements":"0.80925","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01419","scoring_system":"epss","scoring_elements":"0.80953","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01419","scoring_system":"epss","scoring_elements":"0.80955","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01419","scoring_system":"epss","scoring_elements":"0.80952","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01419","scoring_system":"epss","scoring_elements":"0.80949","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01419","scoring_system":"epss","scoring_elements":"0.80968","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9938"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9938","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9938"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=847668","reference_id":"847668","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=847668"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2016-9938"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ryqs-4pz8-3fev"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58867?format=json","vulnerability_id":"VCID-sejy-upm7-tba7","summary":"Unspecified vulnerability in Asterisk Open Source 1.2.x before 1.2.27, 1.4.x before 1.4.18.1 and 1.4.19-rc3; Business Edition A.x.x, B.x.x before B.2.5.1, and C.x.x before C.1.6.2; AsteriskNOW 1.0.x before 1.0.2; Appliance Developer Kit before 1.4 revision 109393; and s800i 1.0.x before 1.1.0.2; allows remote attackers to access the SIP channel driver via a crafted From header.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1332.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1332.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1332","reference_id":"","reference_type":"","scores":[{"value":"0.01213","scoring_system":"epss","scoring_elements":"0.79327","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01213","scoring_system":"epss","scoring_elements":"0.79353","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01213","scoring_system":"epss","scoring_elements":"0.79358","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01213","scoring_system":"epss","scoring_elements":"0.79351","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01213","scoring_system":"epss","scoring_elements":"0.79341","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01213","scoring_system":"epss","scoring_elements":"0.79359","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1332"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1332","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1332"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=438129","reference_id":"438129","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=438129"},{"reference_url":"https://security.gentoo.org/glsa/200804-13","reference_id":"GLSA-200804-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200804-13"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-1332"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sejy-upm7-tba7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58903?format=json","vulnerability_id":"VCID-sg6p-n1uu-mqd2","summary":"The SIP over UDP implementation in Asterisk Open Source 1.4.x before 1.4.43, 1.6.x before 1.6.2.21, and 1.8.x before 1.8.7.2 uses different port numbers for responses to invalid requests depending on whether a SIP username exists, which allows remote attackers to enumerate usernames via a series of requests.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4597","reference_id":"","reference_type":"","scores":[{"value":"0.00685","scoring_system":"epss","scoring_elements":"0.72083","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00685","scoring_system":"epss","scoring_elements":"0.72124","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00685","scoring_system":"epss","scoring_elements":"0.72131","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00685","scoring_system":"epss","scoring_elements":"0.7211","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00685","scoring_system":"epss","scoring_elements":"0.72096","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00685","scoring_system":"epss","scoring_elements":"0.72121","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4597"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651552","reference_id":"651552","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=651552"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-4597"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sg6p-n1uu-mqd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59070?format=json","vulnerability_id":"VCID-sjyv-baqy-6kc1","summary":"Stack overflow in PJSUA API when calling pjsua_playlist_create. An attacker-controlled 'file_names' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43301","reference_id":"","reference_type":"","scores":[{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62755","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62798","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62807","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62797","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62783","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"},{"reference_url":"https://usn.ubuntu.com/8122-1/","reference_id":"USN-8122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8122-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-43301"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sjyv-baqy-6kc1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58891?format=json","vulnerability_id":"VCID-sm86-77g8-fkf1","summary":"manager.c in Asterisk Open Source 1.6.1.x before 1.6.1.24, 1.6.2.x before 1.6.2.17.2, and 1.8.x before 1.8.3.2 allows remote attackers to cause a denial of service (CPU and memory consumption) via a series of manager sessions involving invalid data.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1174","reference_id":"","reference_type":"","scores":[{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.52679","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.52738","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.52744","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.52726","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.527","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0029","scoring_system":"epss","scoring_elements":"0.52725","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1174"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1174","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1174"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-1174"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sm86-77g8-fkf1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58853?format=json","vulnerability_id":"VCID-sn1u-bvfg-17h6","summary":"Stack-based buffer overflow in the IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to execute arbitrary code by sending a long (1) voice or (2) video RTP frame.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3762","reference_id":"","reference_type":"","scores":[{"value":"0.10199","scoring_system":"epss","scoring_elements":"0.9327","published_at":"2026-06-04T12:55:00Z"},{"value":"0.10199","scoring_system":"epss","scoring_elements":"0.93281","published_at":"2026-06-05T12:55:00Z"},{"value":"0.10199","scoring_system":"epss","scoring_elements":"0.93282","published_at":"2026-06-06T12:55:00Z"},{"value":"0.10199","scoring_system":"epss","scoring_elements":"0.9328","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10199","scoring_system":"epss","scoring_elements":"0.93278","published_at":"2026-06-08T12:55:00Z"},{"value":"0.10199","scoring_system":"epss","scoring_elements":"0.93286","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3762"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3762","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3762"},{"reference_url":"https://security.gentoo.org/glsa/200802-11","reference_id":"GLSA-200802-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200802-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-3762"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sn1u-bvfg-17h6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58845?format=json","vulnerability_id":"VCID-sqqd-w4x3-rybc","summary":"Asterisk 1.4 before 1.4.1 and 1.2 before 1.2.16 allows remote attackers to cause a denial of service (crash) by sending a Session Initiation Protocol (SIP) packet without a URI and SIP-version header, which results in a NULL pointer dereference.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1306","reference_id":"","reference_type":"","scores":[{"value":"0.197","scoring_system":"epss","scoring_elements":"0.95549","published_at":"2026-06-04T12:55:00Z"},{"value":"0.197","scoring_system":"epss","scoring_elements":"0.95557","published_at":"2026-06-05T12:55:00Z"},{"value":"0.197","scoring_system":"epss","scoring_elements":"0.9556","published_at":"2026-06-06T12:55:00Z"},{"value":"0.197","scoring_system":"epss","scoring_elements":"0.95563","published_at":"2026-06-08T12:55:00Z"},{"value":"0.197","scoring_system":"epss","scoring_elements":"0.95567","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1306"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1306","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1306"},{"reference_url":"https://security.gentoo.org/glsa/200703-14","reference_id":"GLSA-200703-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200703-14"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/3407.c","reference_id":"OSVDB-33888;CVE-2007-1306","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/3407.c"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-1306"],"risk_score":0.4,"exploitability":"2.0","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sqqd-w4x3-rybc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58850?format=json","vulnerability_id":"VCID-sqr5-tr3r-gud5","summary":"The SIP channel driver (chan_sip) in Asterisk before 1.2.18 and 1.4.x before 1.4.3 does not properly parse SIP UDP packets that do not contain a valid response code, which allows remote attackers to cause a denial of service (crash).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2297","reference_id":"","reference_type":"","scores":[{"value":"0.02719","scoring_system":"epss","scoring_elements":"0.86209","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02719","scoring_system":"epss","scoring_elements":"0.8623","published_at":"2026-06-09T12:55:00Z"},{"value":"0.02719","scoring_system":"epss","scoring_elements":"0.86232","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02719","scoring_system":"epss","scoring_elements":"0.86228","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02719","scoring_system":"epss","scoring_elements":"0.86217","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2297"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=419820","reference_id":"419820","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=419820"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-2297"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sqr5-tr3r-gud5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58987?format=json","vulnerability_id":"VCID-srvv-thfv-tfhw","summary":"An issue was discovered in Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18-cert1 and older. A select set of SIP messages create a dialog in Asterisk. Those SIP messages must contain a contact header. For those messages, if the header was not present and the PJSIP channel driver was used, Asterisk would crash. The severity of this vulnerability is somewhat mitigated if authentication is enabled. If authentication is enabled, a user would have to first be authorized before reaching the crash point.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-17850","reference_id":"","reference_type":"","scores":[{"value":"0.29958","scoring_system":"epss","scoring_elements":"0.96745","published_at":"2026-06-04T12:55:00Z"},{"value":"0.29958","scoring_system":"epss","scoring_elements":"0.96749","published_at":"2026-06-05T12:55:00Z"},{"value":"0.29958","scoring_system":"epss","scoring_elements":"0.96753","published_at":"2026-06-08T12:55:00Z"},{"value":"0.29958","scoring_system":"epss","scoring_elements":"0.96754","published_at":"2026-06-07T12:55:00Z"},{"value":"0.29958","scoring_system":"epss","scoring_elements":"0.96758","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-17850"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17850","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17850"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885072","reference_id":"885072","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885072"},{"reference_url":"https://security.gentoo.org/glsa/201811-11","reference_id":"GLSA-201811-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201811-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-17850"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-srvv-thfv-tfhw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58875?format=json","vulnerability_id":"VCID-suen-87s4-57bj","summary":"Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreject are enabled, generates different responses depending on whether a SIP username is valid, which allows remote attackers to enumerate valid usernames.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3903.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3903.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-3903","reference_id":"","reference_type":"","scores":[{"value":"0.00731","scoring_system":"epss","scoring_elements":"0.7307","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00731","scoring_system":"epss","scoring_elements":"0.73108","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00731","scoring_system":"epss","scoring_elements":"0.73113","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00731","scoring_system":"epss","scoring_elements":"0.73095","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00731","scoring_system":"epss","scoring_elements":"0.73082","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00731","scoring_system":"epss","scoring_elements":"0.73107","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-3903"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3903","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3903"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=461271","reference_id":"461271","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=461271"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522528","reference_id":"522528","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522528"},{"reference_url":"https://security.gentoo.org/glsa/200905-01","reference_id":"GLSA-200905-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200905-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2008-3903"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-suen-87s4-57bj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58967?format=json","vulnerability_id":"VCID-sxye-u2q3-zfa7","summary":"In the pjsip channel driver (res_pjsip) in Asterisk 13.x before 13.17.1 and 14.x before 14.6.1, a carefully crafted tel URI in a From, To, or Contact header could cause Asterisk to crash.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-14098","reference_id":"","reference_type":"","scores":[{"value":"0.40123","scoring_system":"epss","scoring_elements":"0.97414","published_at":"2026-06-04T12:55:00Z"},{"value":"0.40123","scoring_system":"epss","scoring_elements":"0.97419","published_at":"2026-06-05T12:55:00Z"},{"value":"0.40123","scoring_system":"epss","scoring_elements":"0.97421","published_at":"2026-06-06T12:55:00Z"},{"value":"0.40123","scoring_system":"epss","scoring_elements":"0.9742","published_at":"2026-06-07T12:55:00Z"},{"value":"0.40123","scoring_system":"epss","scoring_elements":"0.97422","published_at":"2026-06-08T12:55:00Z"},{"value":"0.40123","scoring_system":"epss","scoring_elements":"0.97423","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-14098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14098"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873909","reference_id":"873909","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873909"},{"reference_url":"https://security.gentoo.org/glsa/201710-29","reference_id":"GLSA-201710-29","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-29"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-14098"],"risk_score":0.2,"exploitability":"0.5","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sxye-u2q3-zfa7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58925?format=json","vulnerability_id":"VCID-t1ud-cwjk-s3fd","summary":"Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x before 1.8.24.1, 10.x before 10.12.4, and 11.x before 11.6.1; Asterisk with Digiumphones 10.x-digiumphones before 10.12.4-digiumphones; and Certified Asterisk 1.8.x before 1.8.15-cert4 and 11.x before 11.2-cert3 allows remote attackers to cause a denial of service (daemon crash) via a 16-bit SMS message with an odd number of bytes, which triggers an infinite loop.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7100","reference_id":"","reference_type":"","scores":[{"value":"0.02551","scoring_system":"epss","scoring_elements":"0.85765","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02551","scoring_system":"epss","scoring_elements":"0.85787","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02551","scoring_system":"epss","scoring_elements":"0.85789","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02551","scoring_system":"epss","scoring_elements":"0.85786","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02551","scoring_system":"epss","scoring_elements":"0.8577","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02551","scoring_system":"epss","scoring_elements":"0.85784","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7100"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=732355","reference_id":"732355","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=732355"},{"reference_url":"https://security.gentoo.org/glsa/201401-15","reference_id":"GLSA-201401-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"},{"url":"http://public2.vulnerablecode.io/api/packages/271611?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%252B1"}],"aliases":["CVE-2013-7100"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t1ud-cwjk-s3fd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58889?format=json","vulnerability_id":"VCID-t3yc-fyyy-6uhb","summary":"Stack-based buffer overflow in the ast_uri_encode function in main/utils.c in Asterisk Open Source before 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.1, 1.8.1.2, 1.8.2.; and Business Edition before C.3.6.2; when running in pedantic mode allows remote authenticated users to execute arbitrary code via crafted caller ID data in vectors involving the (1) SIP channel driver, (2) URIENCODE dialplan function, or (3) AGI dialplan function.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0495","reference_id":"","reference_type":"","scores":[{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.6909","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.6913","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.6914","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69132","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69117","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00573","scoring_system":"epss","scoring_elements":"0.69137","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0495"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0495","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0495"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610487","reference_id":"610487","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610487"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2011-0495"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t3yc-fyyy-6uhb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58900?format=json","vulnerability_id":"VCID-t4nc-bdjz-yfgu","summary":"The default configuration of the SIP channel driver in Asterisk Open Source 1.4.x through 1.4.41.2 and 1.6.2.x through 1.6.2.18.2 does not enable the alwaysauthreject option, which allows remote attackers to enumerate account names by making a series of invalid SIP requests and observing the differences in the responses for different usernames, a different vulnerability than CVE-2011-2536.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2666","reference_id":"","reference_type":"","scores":[{"value":"0.0059","scoring_system":"epss","scoring_elements":"0.69553","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0059","scoring_system":"epss","scoring_elements":"0.69593","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0059","scoring_system":"epss","scoring_elements":"0.696","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0059","scoring_system":"epss","scoring_elements":"0.69591","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0059","scoring_system":"epss","scoring_elements":"0.69578","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0059","scoring_system":"epss","scoring_elements":"0.69598","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2666"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2666","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2666"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-2666"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t4nc-bdjz-yfgu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59134?format=json","vulnerability_id":"VCID-t6xj-x5br-c3cj","summary":"In Sangoma Asterisk through 16.28.0, 17.x and 18.x through 18.14.0, and 19.x through 19.6.0, an incoming Setup message to addons/ooh323c/src/ooq931.c with a malformed Calling or Called Party IE can cause a crash.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37325","reference_id":"","reference_type":"","scores":[{"value":"0.0068","scoring_system":"epss","scoring_elements":"0.71989","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0068","scoring_system":"epss","scoring_elements":"0.72029","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0068","scoring_system":"epss","scoring_elements":"0.72037","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0068","scoring_system":"epss","scoring_elements":"0.72014","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0068","scoring_system":"epss","scoring_elements":"0.72001","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0068","scoring_system":"epss","scoring_elements":"0.72025","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706"},{"reference_url":"https://downloads.asterisk.org/pub/security/AST-2022-007.html","reference_id":"AST-2022-007.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:38:25Z/"}],"url":"https://downloads.asterisk.org/pub/security/AST-2022-007.html"},{"reference_url":"https://www.debian.org/security/2023/dsa-5358","reference_id":"dsa-5358","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:38:25Z/"}],"url":"https://www.debian.org/security/2023/dsa-5358"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html","reference_id":"msg00029.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-24T14:38:25Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-37325"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t6xj-x5br-c3cj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59031?format=json","vulnerability_id":"VCID-t755-8tku-2kap","summary":"An issue was discovered in res_pjsip_t38.c in Sangoma Asterisk through 13.x and Certified Asterisk through 13.21-x. If it receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a NULL pointer dereference and crash will occur. This is different from CVE-2019-18940.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18976","reference_id":"","reference_type":"","scores":[{"value":"0.00166","scoring_system":"epss","scoring_elements":"0.37331","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00166","scoring_system":"epss","scoring_elements":"0.37422","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00166","scoring_system":"epss","scoring_elements":"0.37427","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00166","scoring_system":"epss","scoring_elements":"0.37394","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00166","scoring_system":"epss","scoring_elements":"0.37356","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00166","scoring_system":"epss","scoring_elements":"0.37369","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18976"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18976","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18976"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2019-18976"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t755-8tku-2kap"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59200?format=json","vulnerability_id":"VCID-tnxu-ew29-9ybe","summary":"Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, the ast_xml_open() function in xml.c parses XML documents using libxml with unsafe parsing options that enable entity expansion and XInclude processing. Specifically, it invokes xmlReadFile() with the XML_PARSE_NOENT flag and later processes XIncludes via xmlXIncludeProcess().If any untrusted or user-supplied XML file is passed to this function, it can allow an attacker to trigger XML External Entity (XXE) or XInclude-based local file disclosure, potentially exposing sensitive files from the host system. This can also be triggered in other cases in which the user is able to supply input in xml format that triggers the asterisk process to parse it. This issue has been patched in versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23739.json","reference_id":"","reference_type":"","scores":[{"value":"2.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23739.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23739","reference_id":"","reference_type":"","scores":[{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17683","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17689","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17651","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22529","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22525","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23739"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23739","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23739"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127438","reference_id":"1127438","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127438"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2437909","reference_id":"2437909","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2437909"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-85x7-54wr-vh42","reference_id":"GHSA-85x7-54wr-vh42","reference_type":"","scores":[{"value":"2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-06T17:36:34Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-85x7-54wr-vh42"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2026-23739"],"risk_score":0.9,"exploitability":"0.5","weighted_severity":"1.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tnxu-ew29-9ybe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58881?format=json","vulnerability_id":"VCID-tpeb-5b8c-63cr","summary":"main/rtp.c in Asterisk Open Source 1.6.1 before 1.6.1.2 allows remote attackers to cause a denial of service (crash) via an RTP text frame without a certain delimiter, which triggers a NULL pointer dereference and the subsequent calculation of an invalid pointer.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2651.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2651.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2651","reference_id":"","reference_type":"","scores":[{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21736","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21817","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21805","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21759","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21701","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21709","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2651"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2651"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=514953","reference_id":"514953","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=514953"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539473","reference_id":"539473","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539473"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2009-2651"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tpeb-5b8c-63cr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59079?format=json","vulnerability_id":"VCID-u2e9-pq21-bkha","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In affected versions if the incoming RTCP BYE message contains a reason's length, this declared length is not checked against the actual received packet size, potentially resulting in an out-of-bound read access. This issue affects all users that use PJMEDIA and RTCP. A malicious actor can send a RTCP BYE message with an invalid reason length. Users are advised to upgrade as soon as possible. There are no known workarounds.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43804","reference_id":"","reference_type":"","scores":[{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53627","published_at":"2026-06-04T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53685","published_at":"2026-06-05T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53694","published_at":"2026-06-06T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53681","published_at":"2026-06-09T12:55:00Z"},{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53658","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-43804"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u2e9-pq21-bkha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58856?format=json","vulnerability_id":"VCID-u91y-d563-q7bp","summary":"The STUN implementation in Asterisk 1.4.x before 1.4.8, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to cause a denial of service (crash) via a crafted STUN length attribute in a STUN packet sent on an RTP port.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3765","reference_id":"","reference_type":"","scores":[{"value":"0.00859","scoring_system":"epss","scoring_elements":"0.75375","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00859","scoring_system":"epss","scoring_elements":"0.75404","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00859","scoring_system":"epss","scoring_elements":"0.75408","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00859","scoring_system":"epss","scoring_elements":"0.75399","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00859","scoring_system":"epss","scoring_elements":"0.75385","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00859","scoring_system":"epss","scoring_elements":"0.75411","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3765"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3765","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3765"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=433681","reference_id":"433681","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=433681"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-3765"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u91y-d563-q7bp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59020?format=json","vulnerability_id":"VCID-uhwr-b373-a3bz","summary":"res_pjsip_t38 in Sangoma Asterisk 15.x before 15.7.4 and 16.x before 16.5.1 allows an attacker to trigger a crash by sending a declined stream in a response to a T.38 re-invite initiated by Asterisk. The crash occurs because of a NULL session media object dereference.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15297","reference_id":"","reference_type":"","scores":[{"value":"0.02861","scoring_system":"epss","scoring_elements":"0.8652","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02861","scoring_system":"epss","scoring_elements":"0.86542","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02861","scoring_system":"epss","scoring_elements":"0.86543","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02861","scoring_system":"epss","scoring_elements":"0.86538","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02861","scoring_system":"epss","scoring_elements":"0.86527","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02861","scoring_system":"epss","scoring_elements":"0.8654","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15297"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=940060","reference_id":"940060","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=940060"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2019-15297"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uhwr-b373-a3bz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59044?format=json","vulnerability_id":"VCID-un2s-uxx4-13cc","summary":"A buffer overflow in res_pjsip_diversion.c in Sangoma Asterisk versions 13.38.1, 16.15.1, 17.9.1, and 18.1.1 allows remote attacker to crash Asterisk by deliberately misusing SIP 181 responses.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35776","reference_id":"","reference_type":"","scores":[{"value":"0.00085","scoring_system":"epss","scoring_elements":"0.24619","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00085","scoring_system":"epss","scoring_elements":"0.24721","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00085","scoring_system":"epss","scoring_elements":"0.24711","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00085","scoring_system":"epss","scoring_elements":"0.24655","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00085","scoring_system":"epss","scoring_elements":"0.24597","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00085","scoring_system":"epss","scoring_elements":"0.24606","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35776"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35776","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35776"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983158","reference_id":"983158","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983158"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2020-35776"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-un2s-uxx4-13cc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58920?format=json","vulnerability_id":"VCID-uwrc-sb51-zqes","summary":"The SIP channel driver in Asterisk Open Source 1.8.x before 1.8.20.2, 10.x before 10.12.2, and 11.x before 11.2.2; Certified Asterisk 1.8.15 before 1.8.15-cert2; Asterisk Business Edition (BE) C.3.x before C.3.8.1; and Asterisk Digiumphones 10.x-digiumphones before 10.12.2-digiumphones exhibits different behavior for invalid INVITE, SUBSCRIBE, and REGISTER transactions depending on whether the user account exists, which allows remote attackers to enumerate account names by (1) reading HTTP status codes, (2) reading additional text in a 403 (aka Forbidden) response, or (3) observing whether certain retransmissions occur.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2264","reference_id":"","reference_type":"","scores":[{"value":"0.00171","scoring_system":"epss","scoring_elements":"0.3806","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00171","scoring_system":"epss","scoring_elements":"0.38151","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00171","scoring_system":"epss","scoring_elements":"0.38154","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00171","scoring_system":"epss","scoring_elements":"0.38126","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00171","scoring_system":"epss","scoring_elements":"0.38094","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00171","scoring_system":"epss","scoring_elements":"0.38105","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2264"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2264","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2264"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704114","reference_id":"704114","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704114"},{"reference_url":"https://security.gentoo.org/glsa/201401-15","reference_id":"GLSA-201401-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2013-2264"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uwrc-sb51-zqes"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58939?format=json","vulnerability_id":"VCID-uxyg-qw5v-qqcx","summary":"Race condition in the chan_pjsip channel driver in Asterisk Open Source 12.x before 12.7.1 and 13.x before 13.0.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a cancel request for a SIP session with a queued action to (1) answer a session or (2) send ringing.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8415","reference_id":"","reference_type":"","scores":[{"value":"0.0113","scoring_system":"epss","scoring_elements":"0.78657","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0113","scoring_system":"epss","scoring_elements":"0.78684","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0113","scoring_system":"epss","scoring_elements":"0.78692","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0113","scoring_system":"epss","scoring_elements":"0.78683","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0113","scoring_system":"epss","scoring_elements":"0.78671","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0113","scoring_system":"epss","scoring_elements":"0.78688","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8415"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8415","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8415"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2014-8415"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uxyg-qw5v-qqcx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58878?format=json","vulnerability_id":"VCID-v6a3-ycc7-mkd8","summary":"IAX2 in Asterisk Open Source 1.2.x before 1.2.31, 1.4.x before 1.4.23-rc4, and 1.6.x before 1.6.0.3-rc2; Business Edition A.x.x, B.x.x before B.2.5.7, C.1.x.x before C.1.10.4, and C.2.x.x before C.2.1.2.1; and s800i 1.2.x before 1.3.0 responds differently to a failed login attempt depending on whether the user account exists, which allows remote attackers to enumerate valid usernames.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0041.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0041.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0041","reference_id":"","reference_type":"","scores":[{"value":"0.0086","scoring_system":"epss","scoring_elements":"0.75382","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0086","scoring_system":"epss","scoring_elements":"0.75411","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0086","scoring_system":"epss","scoring_elements":"0.75414","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0086","scoring_system":"epss","scoring_elements":"0.75406","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0086","scoring_system":"epss","scoring_elements":"0.75392","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0086","scoring_system":"epss","scoring_elements":"0.75418","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-0041"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0041","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0041"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=480132","reference_id":"480132","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=480132"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=513413","reference_id":"513413","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=513413"},{"reference_url":"https://security.gentoo.org/glsa/200905-01","reference_id":"GLSA-200905-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200905-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2009-0041"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v6a3-ycc7-mkd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59100?format=json","vulnerability_id":"VCID-v8ev-6zfb-xqfz","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions up to and including 2.11.1 when in a dialog set (or forking) scenario, a hash key shared by multiple UAC dialogs can potentially be prematurely freed when one of the dialogs is destroyed . The issue may cause a dialog set to be registered in the hash table multiple times (with different hash keys) leading to undefined behavior such as dialog list collision which eventually leading to endless loop. A patch is available in commit db3235953baa56d2fb0e276ca510fefca751643f which will be included in the next release. There are no known workarounds for this issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-23608","reference_id":"","reference_type":"","scores":[{"value":"0.00784","scoring_system":"epss","scoring_elements":"0.74122","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00784","scoring_system":"epss","scoring_elements":"0.74155","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00784","scoring_system":"epss","scoring_elements":"0.7416","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00784","scoring_system":"epss","scoring_elements":"0.74146","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00784","scoring_system":"epss","scoring_elements":"0.74129","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"http://seclists.org/fulldisclosure/2022/Mar/1","reference_id":"1","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"http://seclists.org/fulldisclosure/2022/Mar/1"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"http://packetstormsecurity.com/files/166226/Asterisk-Project-Security-Advisory-AST-2022-005.html","reference_id":"Asterisk-Project-Security-Advisory-AST-2022-005.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"http://packetstormsecurity.com/files/166226/Asterisk-Project-Security-Advisory-AST-2022-005.html"},{"reference_url":"https://github.com/pjsip/pjproject/commit/db3235953baa56d2fb0e276ca510fefca751643f","reference_id":"db3235953baa56d2fb0e276ca510fefca751643f","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"https://github.com/pjsip/pjproject/commit/db3235953baa56d2fb0e276ca510fefca751643f"},{"reference_url":"https://www.debian.org/security/2022/dsa-5285","reference_id":"dsa-5285","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"https://www.debian.org/security/2022/dsa-5285"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-ffff-m5fm-qm62","reference_id":"GHSA-ffff-m5fm-qm62","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-ffff-m5fm-qm62"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html","reference_id":"msg00021.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html","reference_id":"msg00035.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00040.html","reference_id":"msg00040.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:55:53Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2022/03/msg00040.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-23608"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v8ev-6zfb-xqfz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58992?format=json","vulnerability_id":"VCID-vnu7-wjv8-eyed","summary":"A memory exhaustion vulnerability exists in Asterisk Open Source 13.x before 13.15.1 and 14.x before 14.4.1 and Certified Asterisk 13.13 before 13.13-cert4, which can be triggered by sending specially crafted SCCP packets causing an infinite loop and leading to memory exhaustion (by message logging in that loop).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9358","reference_id":"","reference_type":"","scores":[{"value":"0.01188","scoring_system":"epss","scoring_elements":"0.79155","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01188","scoring_system":"epss","scoring_elements":"0.79181","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01188","scoring_system":"epss","scoring_elements":"0.79186","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01188","scoring_system":"epss","scoring_elements":"0.79178","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01188","scoring_system":"epss","scoring_elements":"0.79167","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-9358"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9358","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9358"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863906","reference_id":"863906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863906"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2017-9358"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vnu7-wjv8-eyed"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58912?format=json","vulnerability_id":"VCID-vsaj-f564-akc4","summary":"chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1, when a certain mohinterpret setting is enabled, allows remote attackers to cause a denial of service (daemon crash) by placing a call on hold.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2947","reference_id":"","reference_type":"","scores":[{"value":"0.04301","scoring_system":"epss","scoring_elements":"0.89059","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04301","scoring_system":"epss","scoring_elements":"0.89076","published_at":"2026-06-05T12:55:00Z"},{"value":"0.04301","scoring_system":"epss","scoring_elements":"0.89077","published_at":"2026-06-08T12:55:00Z"},{"value":"0.04301","scoring_system":"epss","scoring_elements":"0.89093","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2947"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2947","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2947"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=675204","reference_id":"675204","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=675204"},{"reference_url":"https://security.gentoo.org/glsa/201206-05","reference_id":"GLSA-201206-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-05"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-2947"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vsaj-f564-akc4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58882?format=json","vulnerability_id":"VCID-vszf-c7zd-xuce","summary":"The SIP channel driver in Asterisk Open Source 1.2.x before 1.2.34, 1.4.x before 1.4.26.1, 1.6.0.x before 1.6.0.12, and 1.6.1.x before 1.6.1.4; Asterisk Business Edition A.x.x, B.x.x before B.2.5.9, C.2.x before C.2.4.1, and C.3.x before C.3.1; and Asterisk Appliance s800i 1.2.x before 1.3.0.3 does not use a maximum width when invoking sscanf style functions, which allows remote attackers to cause a denial of service (stack memory consumption) via SIP packets containing large sequences of ASCII decimal characters, as demonstrated via vectors related to (1) the CSeq value in a SIP header, (2) large Content-Length value, and (3) SDP.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2726.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2726.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2726","reference_id":"","reference_type":"","scores":[{"value":"0.3069","scoring_system":"epss","scoring_elements":"0.96814","published_at":"2026-06-04T12:55:00Z"},{"value":"0.3069","scoring_system":"epss","scoring_elements":"0.96818","published_at":"2026-06-05T12:55:00Z"},{"value":"0.3069","scoring_system":"epss","scoring_elements":"0.96823","published_at":"2026-06-06T12:55:00Z"},{"value":"0.3069","scoring_system":"epss","scoring_elements":"0.96822","published_at":"2026-06-08T12:55:00Z"},{"value":"0.3069","scoring_system":"epss","scoring_elements":"0.96827","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-2726"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2726","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2726"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=516990","reference_id":"516990","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=516990"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541441","reference_id":"541441","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=541441"},{"reference_url":"https://security.gentoo.org/glsa/201006-20","reference_id":"GLSA-201006-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-20"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2009-2726"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vszf-c7zd-xuce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58974?format=json","vulnerability_id":"VCID-vte2-1rmy-73dz","summary":"In Asterisk 11.x before 11.25.3, 13.x before 13.17.2, and 14.x before 14.6.2 and Certified Asterisk 11.x before 11.6-cert18 and 13.x before 13.13-cert6, insufficient RTCP packet validation could allow reading stale buffer contents and when combined with the \"nat\" and \"symmetric_rtp\" options allow redirecting where Asterisk sends the next RTCP report.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-14603","reference_id":"","reference_type":"","scores":[{"value":"0.00747","scoring_system":"epss","scoring_elements":"0.73434","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00747","scoring_system":"epss","scoring_elements":"0.7347","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00747","scoring_system":"epss","scoring_elements":"0.73476","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00747","scoring_system":"epss","scoring_elements":"0.73463","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00747","scoring_system":"epss","scoring_elements":"0.7345","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00747","scoring_system":"epss","scoring_elements":"0.73474","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-14603"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14603","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14603"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876328","reference_id":"876328","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876328"},{"reference_url":"https://security.gentoo.org/glsa/201710-29","reference_id":"GLSA-201710-29","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-29"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271615?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%2Bdeb8u5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2%252Bdeb8u5"},{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"},{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-14603"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vte2-1rmy-73dz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59131?format=json","vulnerability_id":"VCID-vzrk-rtxu-k7fd","summary":"PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions prior to and including 2.12.1 a stack buffer overflow vulnerability affects PJSIP users that use STUN in their applications, either by: setting a STUN server in their account/media config in PJSUA/PJSUA2 level, or directly using `pjlib-util/stun_simple` API. A patch is available in commit 450baca which should be included in the next release. There are no known workarounds for this issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-31031","reference_id":"","reference_type":"","scores":[{"value":"0.00721","scoring_system":"epss","scoring_elements":"0.72867","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00721","scoring_system":"epss","scoring_elements":"0.72905","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00721","scoring_system":"epss","scoring_elements":"0.72912","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00721","scoring_system":"epss","scoring_elements":"0.72895","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00721","scoring_system":"epss","scoring_elements":"0.72882","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00721","scoring_system":"epss","scoring_elements":"0.72907","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23537"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23547"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37325"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42706"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1017004","reference_id":"1017004","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1017004"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1017005","reference_id":"1017005","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1017005"},{"reference_url":"https://github.com/pjsip/pjproject/commit/450baca94f475345542c6953832650c390889202","reference_id":"450baca94f475345542c6953832650c390889202","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:49:22Z/"}],"url":"https://github.com/pjsip/pjproject/commit/450baca94f475345542c6953832650c390889202"},{"reference_url":"https://www.debian.org/security/2023/dsa-5358","reference_id":"dsa-5358","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:49:22Z/"}],"url":"https://www.debian.org/security/2023/dsa-5358"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-26j7-ww69-c4qj","reference_id":"GHSA-26j7-ww69-c4qj","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:49:22Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-26j7-ww69-c4qj"},{"reference_url":"https://security.gentoo.org/glsa/202210-37","reference_id":"GLSA-202210-37","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:49:22Z/"}],"url":"https://security.gentoo.org/glsa/202210-37"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html","reference_id":"msg00029.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:49:22Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/02/msg00029.html"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html","reference_id":"msg00038.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-04-23T15:49:22Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-31031"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vzrk-rtxu-k7fd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58977?format=json","vulnerability_id":"VCID-w4xt-e4ug-fkd4","summary":"A Buffer Overflow issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. NOTE: this is different from CVE-2017-7617, which was only about the Party A buffer.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-16671","reference_id":"","reference_type":"","scores":[{"value":"0.03635","scoring_system":"epss","scoring_elements":"0.88044","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03635","scoring_system":"epss","scoring_elements":"0.88064","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03635","scoring_system":"epss","scoring_elements":"0.88067","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03635","scoring_system":"epss","scoring_elements":"0.88066","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03635","scoring_system":"epss","scoring_elements":"0.88068","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03635","scoring_system":"epss","scoring_elements":"0.88083","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-16671"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16671","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16671"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881257","reference_id":"881257","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881257"},{"reference_url":"https://security.gentoo.org/glsa/201811-11","reference_id":"GLSA-201811-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201811-11"},{"reference_url":"https://usn.ubuntu.com/USN-4814-1/","reference_id":"USN-USN-4814-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4814-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/516631?format=json","purl":"pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%2Bdeb10u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.2.1~dfsg-1%252Bdeb10u2"}],"aliases":["CVE-2017-16671"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w4xt-e4ug-fkd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58937?format=json","vulnerability_id":"VCID-we23-mfgn-qkg8","summary":"The res_pjsip_acl module in Asterisk Open Source 12.x before 12.7.1 and 13.x before 13.0.1 does not properly create and load ACLs defined in pjsip.conf at startup, which allows remote attackers to bypass intended PJSIP ACL rules.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8413","reference_id":"","reference_type":"","scores":[{"value":"0.00302","scoring_system":"epss","scoring_elements":"0.53809","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00302","scoring_system":"epss","scoring_elements":"0.53866","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00302","scoring_system":"epss","scoring_elements":"0.53874","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00302","scoring_system":"epss","scoring_elements":"0.53861","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00302","scoring_system":"epss","scoring_elements":"0.53838","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8413"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8413","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8413"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2014-8413"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-we23-mfgn-qkg8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58926?format=json","vulnerability_id":"VCID-wh6v-jyca-jkce","summary":"main/http.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before 11.8.1, and 12.1.x before 12.1.1, and Certified Asterisk 1.8.x before 1.8.15-cert5 and 11.6 before 11.6-cert2, allows remote attackers to cause a denial of service (stack consumption) and possibly execute arbitrary code via an HTTP request with a large number of Cookie headers.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-2286","reference_id":"","reference_type":"","scores":[{"value":"0.14756","scoring_system":"epss","scoring_elements":"0.94619","published_at":"2026-06-04T12:55:00Z"},{"value":"0.14756","scoring_system":"epss","scoring_elements":"0.94627","published_at":"2026-06-05T12:55:00Z"},{"value":"0.14756","scoring_system":"epss","scoring_elements":"0.94628","published_at":"2026-06-06T12:55:00Z"},{"value":"0.14756","scoring_system":"epss","scoring_elements":"0.94629","published_at":"2026-06-07T12:55:00Z"},{"value":"0.14756","scoring_system":"epss","scoring_elements":"0.9463","published_at":"2026-06-08T12:55:00Z"},{"value":"0.14756","scoring_system":"epss","scoring_elements":"0.94635","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-2286"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2286","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2286"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741313","reference_id":"741313","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741313"},{"reference_url":"https://security.gentoo.org/glsa/201405-05","reference_id":"GLSA-201405-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201405-05"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271611?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%252B1"}],"aliases":["CVE-2014-2286"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wh6v-jyca-jkce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58956?format=json","vulnerability_id":"VCID-wkkh-ka74-ubh6","summary":"asterisk 13.10.0 is affected by: denial of service issues in asterisk. The impact is: cause a denial of service (remote).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-7550","reference_id":"","reference_type":"","scores":[{"value":"0.00122","scoring_system":"epss","scoring_elements":"0.30814","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00122","scoring_system":"epss","scoring_elements":"0.30886","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00122","scoring_system":"epss","scoring_elements":"0.30853","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00122","scoring_system":"epss","scoring_elements":"0.30819","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00122","scoring_system":"epss","scoring_elements":"0.30788","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00122","scoring_system":"epss","scoring_elements":"0.30807","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-7550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7550"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838833","reference_id":"838833","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838833"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2016-7550"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wkkh-ka74-ubh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58862?format=json","vulnerability_id":"VCID-wv84-kurn-f3c1","summary":"SQL injection vulnerability in the Call Detail Record Postgres logging engine (cdr_pgsql) in Asterisk 1.4.x before 1.4.15, 1.2.x before 1.2.25, B.x before B.2.3.4, and C.x before C.1.0-beta6 allows remote authenticated users to execute arbitrary SQL commands via (1) ANI and (2) DNIS arguments.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6170","reference_id":"","reference_type":"","scores":[{"value":"0.00367","scoring_system":"epss","scoring_elements":"0.58917","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00367","scoring_system":"epss","scoring_elements":"0.58964","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00367","scoring_system":"epss","scoring_elements":"0.58968","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00367","scoring_system":"epss","scoring_elements":"0.58961","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00367","scoring_system":"epss","scoring_elements":"0.58945","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00367","scoring_system":"epss","scoring_elements":"0.5896","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6170"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6170","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6170"},{"reference_url":"https://security.gentoo.org/glsa/200804-13","reference_id":"GLSA-200804-13","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200804-13"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2007-6170"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wv84-kurn-f3c1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58896?format=json","vulnerability_id":"VCID-xatv-urh7-1uak","summary":"chan_sip.c in the SIP channel driver in Asterisk Open Source 1.6.x before 1.6.2.18.1 and 1.8.x before 1.8.4.3 does not properly handle '\\0' characters in SIP packets, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted packet.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2529","reference_id":"","reference_type":"","scores":[{"value":"0.03361","scoring_system":"epss","scoring_elements":"0.87566","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03361","scoring_system":"epss","scoring_elements":"0.87586","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03361","scoring_system":"epss","scoring_elements":"0.87585","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03361","scoring_system":"epss","scoring_elements":"0.87584","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03361","scoring_system":"epss","scoring_elements":"0.87583","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03361","scoring_system":"epss","scoring_elements":"0.87595","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-2529"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2529","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2529"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631446","reference_id":"631446","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631446"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-2529"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xatv-urh7-1uak"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59176?format=json","vulnerability_id":"VCID-xcp6-cew8-7fe1","summary":"A local privilege escalation vulnerability exists in the safe_asterisk script included with the Asterisk toolkit package. When Asterisk is started via this script (common in SysV init or FreePBX environments), it sources all .sh files located in /etc/asterisk/startup.d/ as root, without validating ownership or permissions.   Non-root users with legitimate write access to /etc/asterisk can exploit this behaviour by placing malicious scripts in the startup.d directory, which will then execute with root privileges upon service restart.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1131","reference_id":"","reference_type":"","scores":[{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.1676","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.16764","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.16722","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.1664","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20157","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-1131"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1131","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1131"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-v9q8-9j8m-5xwp","reference_id":"GHSA-v9q8-9j8m-5xwp","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N/V:C/RE:H/U:Amber"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-09-24T03:55:15Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-v9q8-9j8m-5xwp"},{"reference_url":"https://security.gentoo.org/glsa/202601-04","reference_id":"GLSA-202601-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202601-04"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2025-1131"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xcp6-cew8-7fe1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59029?format=json","vulnerability_id":"VCID-xn9t-7f61-ufgz","summary":"An issue was discovered in channels/chan_sip.c in Sangoma Asterisk 13.x before 13.29.2, 16.x before 16.6.2, and 17.x before 17.0.1, and Certified Asterisk 13.21 before cert5. A SIP request can be sent to Asterisk that can change a SIP peer's IP address. A REGISTER does not need to occur, and calls can be hijacked as a result. The only thing that needs to be known is the peer's name; authentication details such as passwords do not need to be known. This vulnerability is only exploitable when the nat option is set to the default, or auto_force_rport.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18790","reference_id":"","reference_type":"","scores":[{"value":"0.07372","scoring_system":"epss","scoring_elements":"0.91858","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07372","scoring_system":"epss","scoring_elements":"0.9187","published_at":"2026-06-05T12:55:00Z"},{"value":"0.07372","scoring_system":"epss","scoring_elements":"0.91872","published_at":"2026-06-06T12:55:00Z"},{"value":"0.07372","scoring_system":"epss","scoring_elements":"0.91869","published_at":"2026-06-07T12:55:00Z"},{"value":"0.07372","scoring_system":"epss","scoring_elements":"0.91868","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07372","scoring_system":"epss","scoring_elements":"0.91882","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18790"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18790","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18790"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947381","reference_id":"947381","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947381"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2019-18790"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xn9t-7f61-ufgz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59171?format=json","vulnerability_id":"VCID-xrcr-xhum-mbfq","summary":"An issue in the action_listcategories() function of Sangoma Asterisk v22/22.0.0/22.0.0-rc1/22.0.0-rc2/22.0.0-pre1 allows attackers to execute a path traversal.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-53566","reference_id":"","reference_type":"","scores":[{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21074","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21183","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21169","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21126","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00068","scoring_system":"epss","scoring_elements":"0.21063","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-53566"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53566","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53566"},{"reference_url":"https://gist.github.com/hyp164D1/e7c0f44ffb38c00320aa1a6d98bee616","reference_id":"e7c0f44ffb38c00320aa1a6d98bee616","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T17:37:51Z/"}],"url":"https://gist.github.com/hyp164D1/e7c0f44ffb38c00320aa1a6d98bee616"},{"reference_url":"https://github.com/asterisk/asterisk/blob/22/main/manager.c#L2556","reference_id":"manager.c#L2556","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-02T17:37:51Z/"}],"url":"https://github.com/asterisk/asterisk/blob/22/main/manager.c#L2556"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2024-53566"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xrcr-xhum-mbfq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58894?format=json","vulnerability_id":"VCID-xrmk-pm2g-xfaf","summary":"manager.c in the Manager Interface in Asterisk Open Source 1.4.x before 1.4.40.1, 1.6.1.x before 1.6.1.25, 1.6.2.x before 1.6.2.17.3, and 1.8.x before 1.8.3.3 and Asterisk Business Edition C.x.x before C.3.6.4 does not properly check for the system privilege, which allows remote authenticated users to execute arbitrary commands via an Originate action that has an Async header in conjunction with an Application header.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1599","reference_id":"","reference_type":"","scores":[{"value":"0.00338","scoring_system":"epss","scoring_elements":"0.56868","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00338","scoring_system":"epss","scoring_elements":"0.56919","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00338","scoring_system":"epss","scoring_elements":"0.56926","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00338","scoring_system":"epss","scoring_elements":"0.56914","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00338","scoring_system":"epss","scoring_elements":"0.56899","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00338","scoring_system":"epss","scoring_elements":"0.56917","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1599"},{"reference_url":"https://security.gentoo.org/glsa/201110-21","reference_id":"GLSA-201110-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2011-1599"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xrmk-pm2g-xfaf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59026?format=json","vulnerability_id":"VCID-xykr-v7tc-2fhx","summary":"An issue was discovered in manager.c in Sangoma Asterisk through 13.x, 16.x, 17.x and Certified Asterisk 13.21 through 13.21-cert4. A remote authenticated Asterisk Manager Interface (AMI) user without system authorization could use a specially crafted Originate AMI request to execute arbitrary system commands.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18610","reference_id":"","reference_type":"","scores":[{"value":"0.41746","scoring_system":"epss","scoring_elements":"0.97495","published_at":"2026-06-04T12:55:00Z"},{"value":"0.41746","scoring_system":"epss","scoring_elements":"0.97501","published_at":"2026-06-07T12:55:00Z"},{"value":"0.41746","scoring_system":"epss","scoring_elements":"0.97502","published_at":"2026-06-08T12:55:00Z"},{"value":"0.41746","scoring_system":"epss","scoring_elements":"0.97503","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-18610"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18610","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18610"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947377","reference_id":"947377","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947377"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2019-18610"],"risk_score":0.2,"exploitability":"0.5","weighted_severity":"0.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xykr-v7tc-2fhx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59128?format=json","vulnerability_id":"VCID-xzkj-pajj-dqbj","summary":"An issue was discovered in Asterisk through 19.x and Certified Asterisk through 16.8-cert13. The func_odbc module provides possibly inadequate escaping functionality for backslash characters in SQL queries, resulting in user-provided data creating a broken SQL query or possibly a SQL injection. This is fixed in 16.25.2, 18.11.2, and 19.3.2, and 16.8-cert14.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-26651","reference_id":"","reference_type":"","scores":[{"value":"0.00756","scoring_system":"epss","scoring_elements":"0.73622","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00756","scoring_system":"epss","scoring_elements":"0.73658","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00756","scoring_system":"epss","scoring_elements":"0.73662","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00756","scoring_system":"epss","scoring_elements":"0.73649","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00756","scoring_system":"epss","scoring_elements":"0.73635","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00756","scoring_system":"epss","scoring_elements":"0.7366","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-26651"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2022-26651"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xzkj-pajj-dqbj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58918?format=json","vulnerability_id":"VCID-y7sm-4jy3-dfaw","summary":"Multiple stack consumption vulnerabilities in Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk Digiumphones 10.x-digiumphones before 10.11.1-digiumphones allow remote attackers to cause a denial of service (daemon crash) via TCP data using the (1) SIP, (2) HTTP, or (3) XMPP protocol.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-5976","reference_id":"","reference_type":"","scores":[{"value":"0.29742","scoring_system":"epss","scoring_elements":"0.96723","published_at":"2026-06-04T12:55:00Z"},{"value":"0.29742","scoring_system":"epss","scoring_elements":"0.96727","published_at":"2026-06-05T12:55:00Z"},{"value":"0.29742","scoring_system":"epss","scoring_elements":"0.96731","published_at":"2026-06-08T12:55:00Z"},{"value":"0.29742","scoring_system":"epss","scoring_elements":"0.96732","published_at":"2026-06-07T12:55:00Z"},{"value":"0.29742","scoring_system":"epss","scoring_elements":"0.96736","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-5976"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5976","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5976"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697230","reference_id":"697230","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697230"},{"reference_url":"https://security.gentoo.org/glsa/201401-15","reference_id":"GLSA-201401-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-5976"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y7sm-4jy3-dfaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58909?format=json","vulnerability_id":"VCID-yekm-v6qe-auch","summary":"main/manager.c in the Manager Interface in Asterisk Open Source 1.6.2.x before 1.6.2.24, 1.8.x before 1.8.11.1, and 10.x before 10.3.1 and Asterisk Business Edition C.3.x before C.3.7.4 does not properly enforce System class authorization requirements, which allows remote authenticated users to execute arbitrary commands via (1) the originate action in the MixMonitor application, (2) the SHELL and EVAL functions in the GetVar manager action, or (3) the SHELL and EVAL functions in the Status manager action.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2414","reference_id":"","reference_type":"","scores":[{"value":"0.04278","scoring_system":"epss","scoring_elements":"0.89029","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04278","scoring_system":"epss","scoring_elements":"0.89046","published_at":"2026-06-05T12:55:00Z"},{"value":"0.04278","scoring_system":"epss","scoring_elements":"0.89048","published_at":"2026-06-06T12:55:00Z"},{"value":"0.04278","scoring_system":"epss","scoring_elements":"0.89047","published_at":"2026-06-08T12:55:00Z"},{"value":"0.04278","scoring_system":"epss","scoring_elements":"0.89064","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2414"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2414","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2414"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670180","reference_id":"670180","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670180"},{"reference_url":"https://security.gentoo.org/glsa/201206-05","reference_id":"GLSA-201206-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-05"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-2414"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yekm-v6qe-auch"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58935?format=json","vulnerability_id":"VCID-yhbv-p3ze-nkhc","summary":"Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1 and Certified Asterisk 11.6 before 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly handled in the ReceiveFax dialplan application.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6610","reference_id":"","reference_type":"","scores":[{"value":"0.01519","scoring_system":"epss","scoring_elements":"0.81568","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01519","scoring_system":"epss","scoring_elements":"0.81597","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01519","scoring_system":"epss","scoring_elements":"0.81599","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01519","scoring_system":"epss","scoring_elements":"0.81598","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01519","scoring_system":"epss","scoring_elements":"0.81591","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01519","scoring_system":"epss","scoring_elements":"0.81606","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-6610"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6610","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6610"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=762164","reference_id":"762164","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=762164"},{"reference_url":"https://security.gentoo.org/glsa/201411-10","reference_id":"GLSA-201411-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201411-10"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271611?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%252B1"}],"aliases":["CVE-2014-6610"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yhbv-p3ze-nkhc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58906?format=json","vulnerability_id":"VCID-ykhc-wcyu-5kfc","summary":"Stack-based buffer overflow in the milliwatt_generate function in the Miliwatt application in Asterisk 1.4.x before 1.4.44, 1.6.x before 1.6.2.23, 1.8.x before 1.8.10.1, and 10.x before 10.2.1, when the o option is used and the internal_timing option is off, allows remote attackers to cause a denial of service (application crash) via a large number of samples in an audio packet.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1183","reference_id":"","reference_type":"","scores":[{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44494","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44564","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44572","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.4455","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44516","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.4453","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1183"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=664411","reference_id":"664411","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=664411"},{"reference_url":"https://security.gentoo.org/glsa/201203-21","reference_id":"GLSA-201203-21","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201203-21"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"}],"aliases":["CVE-2012-1183"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ykhc-wcyu-5kfc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58931?format=json","vulnerability_id":"VCID-ynpa-cb9a-47em","summary":"Asterisk Open Source 11.x before 11.10.1 and 12.x before 12.3.1 and Certified Asterisk 11.6 before 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-4046","reference_id":"","reference_type":"","scores":[{"value":"0.01378","scoring_system":"epss","scoring_elements":"0.80594","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01378","scoring_system":"epss","scoring_elements":"0.80619","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01378","scoring_system":"epss","scoring_elements":"0.80621","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01378","scoring_system":"epss","scoring_elements":"0.80617","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01378","scoring_system":"epss","scoring_elements":"0.80613","published_at":"2026-06-08T12:55:00Z"},{"value":"0.01378","scoring_system":"epss","scoring_elements":"0.80634","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-4046"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4046","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4046"},{"reference_url":"https://security.gentoo.org/glsa/201406-25","reference_id":"GLSA-201406-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-25"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/271611?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%252B1"}],"aliases":["CVE-2014-4046"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ynpa-cb9a-47em"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59204?format=json","vulnerability_id":"VCID-ypjq-tgrg-jkff","summary":"Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, when ast_coredumper writes its gdb init and output files to a directory that is world-writable (for example /tmp), an attacker with write permission(which is all users on a linux system) to that directory can cause root to execute arbitrary commands or overwrite arbitrary files by controlling the gdb init file and output paths. This issue has been patched in versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23740.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23740.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23740","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.0386","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03847","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06203","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06191","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-23740"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23740","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-23740"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127438","reference_id":"1127438","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127438"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2437723","reference_id":"2437723","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2437723"},{"reference_url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-xpc6-x892-v83c","reference_id":"GHSA-xpc6-x892-v83c","reference_type":"","scores":[{"value":"0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:N"},{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-02-06T19:11:52Z/"}],"url":"https://github.com/asterisk/asterisk/security/advisories/GHSA-xpc6-x892-v83c"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196089?format=json","purl":"pkg:deb/debian/asterisk@1:22.9.0%2Bdfsg%2B~cs6.16.60671434-1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:22.9.0%252Bdfsg%252B~cs6.16.60671434-1"}],"aliases":["CVE-2026-23740"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ypjq-tgrg-jkff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58870?format=json","vulnerability_id":"VCID-yxbc-8kez-sufx","summary":"The IAX2 channel driver (chan_iax2) in Asterisk Open Source 1.0.x, 1.2.x before 1.2.28, and 1.4.x before 1.4.19.1; Business Edition A.x.x, B.x.x before B.2.5.2, and C.x.x before C.1.8.1; AsteriskNOW before 1.0.3; Appliance Developer Kit 0.x.x; and s800i before 1.1.0.3, when configured to allow unauthenticated calls, does not verify that an ACK response contains a call number matching the server's reply to a NEW message, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed ACK response that does not complete a 3-way handshake.  NOTE: this issue exists because of an incomplete fix for CVE-2008-1923.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1897.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1897.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1897","reference_id":"","reference_type":"","scores":[{"value":"0.03049","scoring_system":"epss","scoring_elements":"0.86941","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03049","scoring_system":"epss","scoring_elements":"0.86964","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03049","scoring_system":"epss","scoring_elements":"0.86961","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03049","scoring_system":"epss","scoring_elements":"0.86956","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03049","scoring_system":"epss","scoring_elements":"0.86947","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03049","scoring_system":"epss","scoring_elements":"0.86958","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1897"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=443761","reference_id":"443761","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=443761"},{"reference_url":"https://security.gentoo.org/glsa/200905-01","reference_id":"GLSA-200905-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200905-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-1897"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yxbc-8kez-sufx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58923?format=json","vulnerability_id":"VCID-z23z-6v1y-efek","summary":"The SIP channel driver (channels/chan_sip.c) in Asterisk Open Source 1.8.17.x through 1.8.22.x, 1.8.23.x before 1.8.23.1, and 11.x before 11.5.1 and Certified Asterisk 1.8.15 before 1.8.15-cert3 and 11.2 before 11.2-cert2 allows remote attackers to cause a denial of service (NULL pointer dereference, segmentation fault, and daemon crash) via an ACK with SDP to a previously terminated channel.  NOTE: some of these details are obtained from third party information.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-5641","reference_id":"","reference_type":"","scores":[{"value":"0.04098","scoring_system":"epss","scoring_elements":"0.88786","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04098","scoring_system":"epss","scoring_elements":"0.88803","published_at":"2026-06-06T12:55:00Z"},{"value":"0.04098","scoring_system":"epss","scoring_elements":"0.88801","published_at":"2026-06-08T12:55:00Z"},{"value":"0.04098","scoring_system":"epss","scoring_elements":"0.88819","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-5641"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5641","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5641"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5642","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5642"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721220","reference_id":"721220","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721220"},{"reference_url":"https://security.gentoo.org/glsa/201401-15","reference_id":"GLSA-201401-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"},{"url":"http://public2.vulnerablecode.io/api/packages/271611?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%252B1"}],"aliases":["CVE-2013-5641"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z23z-6v1y-efek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59154?format=json","vulnerability_id":"VCID-z8ac-81bd-7bep","summary":"PJSIP is a free and open source multimedia communication library written in C with high level API in C, C++, Java, C#, and Python languages. SRTP is a higher level media transport which is stacked upon a lower level media transport such as UDP and ICE. Currently a higher level transport is not synchronized with its lower level transport that may introduce use-after-free issue. This vulnerability affects applications that have SRTP capability (`PJMEDIA_HAS_SRTP` is set) and use underlying media transport other than UDP. This vulnerability’s impact may range from unexpected application termination to control flow hijack/memory corruption. The patch is available as a commit in the master branch.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-38703","reference_id":"","reference_type":"","scores":[{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.51719","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.51692","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.51727","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.51673","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0028","scoring_system":"epss","scoring_elements":"0.51705","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-38703"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37457","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37457"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38703","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38703"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49786"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059303","reference_id":"1059303","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059303"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059307","reference_id":"1059307","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059307"},{"reference_url":"https://github.com/pjsip/pjproject/commit/6dc9b8c181aff39845f02b4626e0812820d4ef0d","reference_id":"6dc9b8c181aff39845f02b4626e0812820d4ef0d","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-19T18:46:16Z/"}],"url":"https://github.com/pjsip/pjproject/commit/6dc9b8c181aff39845f02b4626e0812820d4ef0d"},{"reference_url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-f76w-fh7c-pc66","reference_id":"GHSA-f76w-fh7c-pc66","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-19T18:46:16Z/"}],"url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-f76w-fh7c-pc66"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/12/msg00019.html","reference_id":"msg00019.html","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-09-19T18:46:16Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/12/msg00019.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/196088?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-341r-eamh-fbee"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u4"}],"aliases":["CVE-2023-38703"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z8ac-81bd-7bep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58940?format=json","vulnerability_id":"VCID-z9b5-rgxt-jbe3","summary":"Use-after-free vulnerability in the PJSIP channel driver in Asterisk Open Source 12.x before 12.7.1 and 13.x before 13.0.1, when using the res_pjsip_refer module, allows remote attackers to cause a denial of service (crash) via an in-dialog INVITE with Replaces message, which triggers the channel to be hung up.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8416","reference_id":"","reference_type":"","scores":[{"value":"0.00978","scoring_system":"epss","scoring_elements":"0.77079","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00978","scoring_system":"epss","scoring_elements":"0.7711","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00978","scoring_system":"epss","scoring_elements":"0.7712","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00978","scoring_system":"epss","scoring_elements":"0.77108","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00978","scoring_system":"epss","scoring_elements":"0.77099","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8416"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8416","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8416"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/515646?format=json","purl":"pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%2Bdeb9u4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:13.14.1~dfsg-2%252Bdeb9u4"}],"aliases":["CVE-2014-8416"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z9b5-rgxt-jbe3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58884?format=json","vulnerability_id":"VCID-z9du-84uc-x3gw","summary":"Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.3, 1.6.0.x before 1.6.0.17, and 1.6.1.x before 1.6.1.9; Business Edition A.x.x, B.x.x before B.2.5.12, C.2.x.x before C.2.4.5, and C.3.x.x before C.3.2.2; AsteriskNOW 1.5; and s800i 1.3.x before 1.3.0.5 generate different error messages depending on whether a SIP username is valid, which allows remote attackers to enumerate valid usernames via multiple crafted REGISTER messages with inconsistent usernames in the URI in the To header and the Digest in the Authorization header.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3727.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3727.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3727","reference_id":"","reference_type":"","scores":[{"value":"0.0072","scoring_system":"epss","scoring_elements":"0.72845","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0072","scoring_system":"epss","scoring_elements":"0.72882","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0072","scoring_system":"epss","scoring_elements":"0.72889","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0072","scoring_system":"epss","scoring_elements":"0.72872","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0072","scoring_system":"epss","scoring_elements":"0.7286","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0072","scoring_system":"epss","scoring_elements":"0.72884","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3727"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3727","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3727"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=533137","reference_id":"533137","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=533137"},{"reference_url":"https://security.gentoo.org/glsa/201006-20","reference_id":"GLSA-201006-20","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201006-20"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201248?format=json","purl":"pkg:deb/debian/asterisk@1:1.6.2.9-2%2Bsqueeze12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.6.2.9-2%252Bsqueeze12"}],"aliases":["CVE-2009-3727"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z9du-84uc-x3gw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59050?format=json","vulnerability_id":"VCID-zk2p-hxmz-yqhb","summary":"An issue was discovered in res_pjsip_session.c in Digium Asterisk through 13.38.1; 14.x, 15.x, and 16.x through 16.16.0; 17.x through 17.9.1; and 18.x through 18.2.0, and Certified Asterisk through 16.8-cert5. An SDP negotiation vulnerability in PJSIP allows a remote server to potentially crash Asterisk by sending specific SIP responses that cause an SDP negotiation failure.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-26906","reference_id":"","reference_type":"","scores":[{"value":"0.00811","scoring_system":"epss","scoring_elements":"0.74587","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00811","scoring_system":"epss","scoring_elements":"0.74618","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00811","scoring_system":"epss","scoring_elements":"0.74624","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00811","scoring_system":"epss","scoring_elements":"0.74612","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00811","scoring_system":"epss","scoring_elements":"0.74595","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00811","scoring_system":"epss","scoring_elements":"0.74621","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-26906"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26906","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983159","reference_id":"983159","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983159"},{"reference_url":"https://security.gentoo.org/glsa/202412-03","reference_id":"GLSA-202412-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202412-03"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-26906"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zk2p-hxmz-yqhb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58924?format=json","vulnerability_id":"VCID-zrts-thu2-kuh5","summary":"The SIP channel driver (channels/chan_sip.c) in Asterisk Open Source 1.8.x before 1.8.23.1, 10.x before 10.12.3, and 11.x before 11.5.1; Certified Asterisk 1.8.15 before 1.8.15-cert3 and 11.2 before 11.2-cert2; and Asterisk Digiumphones 10.x-digiumphones before 10.12.3-digiumphones allows remote attackers to cause a denial of service (NULL pointer dereference, segmentation fault, and daemon crash) via an invalid SDP that defines a media description before the connection description in a SIP request.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-5642","reference_id":"","reference_type":"","scores":[{"value":"0.05078","scoring_system":"epss","scoring_elements":"0.89966","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05078","scoring_system":"epss","scoring_elements":"0.89981","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05078","scoring_system":"epss","scoring_elements":"0.89978","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05078","scoring_system":"epss","scoring_elements":"0.89977","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05078","scoring_system":"epss","scoring_elements":"0.89992","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-5642"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5641","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5641"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5642","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5642"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721220","reference_id":"721220","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721220"},{"reference_url":"https://security.gentoo.org/glsa/201401-15","reference_id":"GLSA-201401-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201249?format=json","purl":"pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%2Bdeb7u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.8.13.1~dfsg1-3%252Bdeb7u3"},{"url":"http://public2.vulnerablecode.io/api/packages/271611?format=json","purl":"pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:11.13.1~dfsg-2~bpo70%252B1"}],"aliases":["CVE-2013-5642"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zrts-thu2-kuh5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/59067?format=json","vulnerability_id":"VCID-zv8y-1d3c-s3bk","summary":"Stack overflow in PJSUA API when calling pjsua_recorder_create. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43300","reference_id":"","reference_type":"","scores":[{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62755","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62798","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62807","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62797","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00428","scoring_system":"epss","scoring_elements":"0.62783","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43804"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43845"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46837"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21722"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23608"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24763"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24764"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24786"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24792"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24793"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26498"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26499"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26651"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998","reference_id":"1014998","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998"},{"reference_url":"https://usn.ubuntu.com/6422-1/","reference_id":"USN-6422-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6422-1/"},{"reference_url":"https://usn.ubuntu.com/8122-1/","reference_id":"USN-8122-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8122-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/517161?format=json","purl":"pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%2Bdeb11u3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z8ac-81bd-7bep"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:16.28.0~dfsg-0%252Bdeb11u3"}],"aliases":["CVE-2021-43300"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zv8y-1d3c-s3bk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58874?format=json","vulnerability_id":"VCID-zw6v-42uj-fqak","summary":"The FWDOWNL firmware-download implementation in Asterisk Open Source 1.0.x, 1.2.x before 1.2.30, and 1.4.x before 1.4.21.2; Business Edition A.x.x, B.x.x before B.2.5.4, and C.x.x before C.1.10.3; AsteriskNOW; Appliance Developer Kit 0.x.x; and s800i 1.0.x before 1.2.0.1 allows remote attackers to cause a denial of service (traffic amplification) via an IAX2 FWDOWNL request.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-3264","reference_id":"","reference_type":"","scores":[{"value":"0.07458","scoring_system":"epss","scoring_elements":"0.91904","published_at":"2026-06-04T12:55:00Z"},{"value":"0.07458","scoring_system":"epss","scoring_elements":"0.91916","published_at":"2026-06-05T12:55:00Z"},{"value":"0.07458","scoring_system":"epss","scoring_elements":"0.91917","published_at":"2026-06-06T12:55:00Z"},{"value":"0.07458","scoring_system":"epss","scoring_elements":"0.91915","published_at":"2026-06-08T12:55:00Z"},{"value":"0.07458","scoring_system":"epss","scoring_elements":"0.91929","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-3264"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3264","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3264"},{"reference_url":"https://security.gentoo.org/glsa/200905-01","reference_id":"GLSA-200905-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200905-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201247?format=json","purl":"pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%2Blenny6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.4.21.2~dfsg-3%252Blenny6"}],"aliases":["CVE-2008-3264"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zw6v-42uj-fqak"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58842?format=json","vulnerability_id":"VCID-1hda-ekx4-3bhh","summary":"Asterisk 1.2.10 supports the use of client-controlled variables to determine filenames in the Record function, which allows remote attackers to (1) execute code via format string specifiers or (2) overwrite files via directory traversals involving unspecified vectors, as demonstrated by the CALLERIDNAME variable.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4346","reference_id":"","reference_type":"","scores":[{"value":"0.02329","scoring_system":"epss","scoring_elements":"0.8512","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02329","scoring_system":"epss","scoring_elements":"0.85145","published_at":"2026-06-05T12:55:00Z"},{"value":"0.02329","scoring_system":"epss","scoring_elements":"0.85149","published_at":"2026-06-06T12:55:00Z"},{"value":"0.02329","scoring_system":"epss","scoring_elements":"0.85144","published_at":"2026-06-07T12:55:00Z"},{"value":"0.02329","scoring_system":"epss","scoring_elements":"0.85133","published_at":"2026-06-08T12:55:00Z"},{"value":"0.02329","scoring_system":"epss","scoring_elements":"0.85147","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4346"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=385060","reference_id":"385060","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=385060"},{"reference_url":"https://security.gentoo.org/glsa/200610-15","reference_id":"GLSA-200610-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200610-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1tk1-rue9-6ug2"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-1zx2-1zmc-cfc2"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ujk-8wc9-uufu"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-66xs-kat9-j3d1"},{"vulnerability":"VCID-6jar-s4wy-6yek"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-6xdc-c4wy-m3dr"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-7u7r-v9zz-sugu"},{"vulnerability":"VCID-88nz-dd1a-3uc8"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8nu6-n38z-kyfw"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a83b-2vdm-f7g1"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-assz-3mbc-fygg"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-c8z6-4zc2-u3fm"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-e9a9-quqt-gbe8"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fbh2-kfn9-z7fs"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gnhb-813u-1qc2"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-hxjd-d7ht-cba2"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m43n-684g-9fg5"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rhys-s4x1-6ba5"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-rxy8-6uup-myhg"},{"vulnerability":"VCID-rxym-j9ke-4uhx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sejy-upm7-tba7"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-sn1u-bvfg-17h6"},{"vulnerability":"VCID-sqqd-w4x3-rybc"},{"vulnerability":"VCID-sqr5-tr3r-gud5"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-u91y-d563-q7bp"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-wv84-kurn-f3c1"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-yxbc-8kez-sufx"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"},{"vulnerability":"VCID-zw6v-42uj-fqak"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}],"aliases":["CVE-2006-4346"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1hda-ekx4-3bhh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58837?format=json","vulnerability_id":"VCID-6sr7-d3xc-4bdj","summary":"Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-2081","reference_id":"","reference_type":"","scores":[{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57543","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57596","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57604","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57595","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.57582","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00347","scoring_system":"epss","scoring_elements":"0.576","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-2081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2081"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=315532","reference_id":"315532","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=315532"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1tk1-rue9-6ug2"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-1zx2-1zmc-cfc2"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ujk-8wc9-uufu"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-66xs-kat9-j3d1"},{"vulnerability":"VCID-6jar-s4wy-6yek"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-6xdc-c4wy-m3dr"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-7u7r-v9zz-sugu"},{"vulnerability":"VCID-88nz-dd1a-3uc8"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8nu6-n38z-kyfw"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a83b-2vdm-f7g1"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-assz-3mbc-fygg"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-c8z6-4zc2-u3fm"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-e9a9-quqt-gbe8"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fbh2-kfn9-z7fs"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gnhb-813u-1qc2"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-hxjd-d7ht-cba2"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m43n-684g-9fg5"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rhys-s4x1-6ba5"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-rxy8-6uup-myhg"},{"vulnerability":"VCID-rxym-j9ke-4uhx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sejy-upm7-tba7"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-sn1u-bvfg-17h6"},{"vulnerability":"VCID-sqqd-w4x3-rybc"},{"vulnerability":"VCID-sqr5-tr3r-gud5"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-u91y-d563-q7bp"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-wv84-kurn-f3c1"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-yxbc-8kez-sufx"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"},{"vulnerability":"VCID-zw6v-42uj-fqak"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}],"aliases":["CVE-2005-2081"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6sr7-d3xc-4bdj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58839?format=json","vulnerability_id":"VCID-d7kp-ketz-33dy","summary":"Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1827","reference_id":"","reference_type":"","scores":[{"value":"0.03378","scoring_system":"epss","scoring_elements":"0.87598","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03378","scoring_system":"epss","scoring_elements":"0.8762","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03378","scoring_system":"epss","scoring_elements":"0.87618","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03378","scoring_system":"epss","scoring_elements":"0.87617","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03378","scoring_system":"epss","scoring_elements":"0.87629","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1827"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1827","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1827"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=364195","reference_id":"364195","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=364195"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1tk1-rue9-6ug2"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-1zx2-1zmc-cfc2"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ujk-8wc9-uufu"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-66xs-kat9-j3d1"},{"vulnerability":"VCID-6jar-s4wy-6yek"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-6xdc-c4wy-m3dr"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-7u7r-v9zz-sugu"},{"vulnerability":"VCID-88nz-dd1a-3uc8"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8nu6-n38z-kyfw"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a83b-2vdm-f7g1"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-assz-3mbc-fygg"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-c8z6-4zc2-u3fm"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-e9a9-quqt-gbe8"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fbh2-kfn9-z7fs"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gnhb-813u-1qc2"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-hxjd-d7ht-cba2"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m43n-684g-9fg5"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rhys-s4x1-6ba5"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-rxy8-6uup-myhg"},{"vulnerability":"VCID-rxym-j9ke-4uhx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sejy-upm7-tba7"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-sn1u-bvfg-17h6"},{"vulnerability":"VCID-sqqd-w4x3-rybc"},{"vulnerability":"VCID-sqr5-tr3r-gud5"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-u91y-d563-q7bp"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-wv84-kurn-f3c1"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-yxbc-8kez-sufx"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"},{"vulnerability":"VCID-zw6v-42uj-fqak"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}],"aliases":["CVE-2006-1827"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d7kp-ketz-33dy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58840?format=json","vulnerability_id":"VCID-gfu7-a21j-fudx","summary":"The IAX2 channel driver (chan_iax2) for Asterisk 1.2.x before 1.2.9 and 1.0.x before 1.0.11 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via truncated IAX 2 (IAX2) video frames, which bypasses a length check and leads to a buffer overflow involving negative length check.  NOTE: the vendor advisory claims that only a DoS is possible, but the original researcher is reliable.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-2898","reference_id":"","reference_type":"","scores":[{"value":"0.00324","scoring_system":"epss","scoring_elements":"0.55717","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00324","scoring_system":"epss","scoring_elements":"0.55774","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00324","scoring_system":"epss","scoring_elements":"0.5578","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00324","scoring_system":"epss","scoring_elements":"0.55768","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00324","scoring_system":"epss","scoring_elements":"0.5575","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00324","scoring_system":"epss","scoring_elements":"0.5577","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-2898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2898"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=380054","reference_id":"380054","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=380054"},{"reference_url":"https://security.gentoo.org/glsa/200606-15","reference_id":"GLSA-200606-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200606-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1tk1-rue9-6ug2"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-1zx2-1zmc-cfc2"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ujk-8wc9-uufu"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-66xs-kat9-j3d1"},{"vulnerability":"VCID-6jar-s4wy-6yek"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-6xdc-c4wy-m3dr"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-7u7r-v9zz-sugu"},{"vulnerability":"VCID-88nz-dd1a-3uc8"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8nu6-n38z-kyfw"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a83b-2vdm-f7g1"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-assz-3mbc-fygg"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-c8z6-4zc2-u3fm"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-e9a9-quqt-gbe8"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fbh2-kfn9-z7fs"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gnhb-813u-1qc2"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-hxjd-d7ht-cba2"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m43n-684g-9fg5"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rhys-s4x1-6ba5"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-rxy8-6uup-myhg"},{"vulnerability":"VCID-rxym-j9ke-4uhx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sejy-upm7-tba7"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-sn1u-bvfg-17h6"},{"vulnerability":"VCID-sqqd-w4x3-rybc"},{"vulnerability":"VCID-sqr5-tr3r-gud5"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-u91y-d563-q7bp"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-wv84-kurn-f3c1"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-yxbc-8kez-sufx"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"},{"vulnerability":"VCID-zw6v-42uj-fqak"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}],"aliases":["CVE-2006-2898"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gfu7-a21j-fudx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58838?format=json","vulnerability_id":"VCID-hbgm-s7yx-fqcx","summary":"Directory traversal vulnerability in vmail.cgi in Asterisk 1.0.9 through 1.2.0-beta1 allows remote attackers to access WAV files via a .. (dot dot) in the folder parameter.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3559","reference_id":"","reference_type":"","scores":[{"value":"0.05519","scoring_system":"epss","scoring_elements":"0.90407","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05519","scoring_system":"epss","scoring_elements":"0.90421","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05519","scoring_system":"epss","scoring_elements":"0.90419","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05519","scoring_system":"epss","scoring_elements":"0.90417","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05519","scoring_system":"epss","scoring_elements":"0.90434","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3559"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3559","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3559"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=338116","reference_id":"338116","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=338116"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/cgi/webapps/26475.txt","reference_id":"CVE-2005-3559;OSVDB-20577","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/cgi/webapps/26475.txt"},{"reference_url":"https://www.securityfocus.com/bid/15336/info","reference_id":"CVE-2005-3559;OSVDB-20577","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/15336/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1tk1-rue9-6ug2"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-1zx2-1zmc-cfc2"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ujk-8wc9-uufu"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-66xs-kat9-j3d1"},{"vulnerability":"VCID-6jar-s4wy-6yek"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-6xdc-c4wy-m3dr"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-7u7r-v9zz-sugu"},{"vulnerability":"VCID-88nz-dd1a-3uc8"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8nu6-n38z-kyfw"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a83b-2vdm-f7g1"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-assz-3mbc-fygg"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-c8z6-4zc2-u3fm"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-e9a9-quqt-gbe8"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fbh2-kfn9-z7fs"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gnhb-813u-1qc2"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-hxjd-d7ht-cba2"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m43n-684g-9fg5"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rhys-s4x1-6ba5"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-rxy8-6uup-myhg"},{"vulnerability":"VCID-rxym-j9ke-4uhx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sejy-upm7-tba7"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-sn1u-bvfg-17h6"},{"vulnerability":"VCID-sqqd-w4x3-rybc"},{"vulnerability":"VCID-sqr5-tr3r-gud5"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-u91y-d563-q7bp"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-wv84-kurn-f3c1"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-yxbc-8kez-sufx"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"},{"vulnerability":"VCID-zw6v-42uj-fqak"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}],"aliases":["CVE-2005-3559"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hbgm-s7yx-fqcx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58844?format=json","vulnerability_id":"VCID-karx-ch74-t3e6","summary":"Unspecified vulnerability in the SIP channel driver (channels/chan_sip.c) in Asterisk 1.2.x before 1.2.13 and 1.4.x before 1.4.0-beta3 allows remote attackers to cause a denial of service (resource consumption) via unspecified vectors that result in the creation of \"a real pvt structure\" that uses more resources than necessary.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-5445","reference_id":"","reference_type":"","scores":[{"value":"0.10034","scoring_system":"epss","scoring_elements":"0.93203","published_at":"2026-06-04T12:55:00Z"},{"value":"0.10034","scoring_system":"epss","scoring_elements":"0.93214","published_at":"2026-06-06T12:55:00Z"},{"value":"0.10034","scoring_system":"epss","scoring_elements":"0.93211","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10034","scoring_system":"epss","scoring_elements":"0.93209","published_at":"2026-06-08T12:55:00Z"},{"value":"0.10034","scoring_system":"epss","scoring_elements":"0.93216","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-5445"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5445","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5445"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=395080","reference_id":"395080","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=395080"},{"reference_url":"https://security.gentoo.org/glsa/200610-15","reference_id":"GLSA-200610-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200610-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1tk1-rue9-6ug2"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-1zx2-1zmc-cfc2"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ujk-8wc9-uufu"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-66xs-kat9-j3d1"},{"vulnerability":"VCID-6jar-s4wy-6yek"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-6xdc-c4wy-m3dr"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-7u7r-v9zz-sugu"},{"vulnerability":"VCID-88nz-dd1a-3uc8"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8nu6-n38z-kyfw"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a83b-2vdm-f7g1"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-assz-3mbc-fygg"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-c8z6-4zc2-u3fm"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-e9a9-quqt-gbe8"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fbh2-kfn9-z7fs"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gnhb-813u-1qc2"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-hxjd-d7ht-cba2"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m43n-684g-9fg5"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rhys-s4x1-6ba5"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-rxy8-6uup-myhg"},{"vulnerability":"VCID-rxym-j9ke-4uhx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sejy-upm7-tba7"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-sn1u-bvfg-17h6"},{"vulnerability":"VCID-sqqd-w4x3-rybc"},{"vulnerability":"VCID-sqr5-tr3r-gud5"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-u91y-d563-q7bp"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-wv84-kurn-f3c1"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-yxbc-8kez-sufx"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"},{"vulnerability":"VCID-zw6v-42uj-fqak"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}],"aliases":["CVE-2006-5445"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-karx-ch74-t3e6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58841?format=json","vulnerability_id":"VCID-ksvq-tcgp-kyeb","summary":"Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in Asterisk 1.0 through 1.2.10 allows remote attackers to execute arbitrary code via a crafted audit endpoint (AUEP) response.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4345","reference_id":"","reference_type":"","scores":[{"value":"0.05153","scoring_system":"epss","scoring_elements":"0.90051","published_at":"2026-06-04T12:55:00Z"},{"value":"0.05153","scoring_system":"epss","scoring_elements":"0.90067","published_at":"2026-06-05T12:55:00Z"},{"value":"0.05153","scoring_system":"epss","scoring_elements":"0.90066","published_at":"2026-06-06T12:55:00Z"},{"value":"0.05153","scoring_system":"epss","scoring_elements":"0.90064","published_at":"2026-06-07T12:55:00Z"},{"value":"0.05153","scoring_system":"epss","scoring_elements":"0.90063","published_at":"2026-06-08T12:55:00Z"},{"value":"0.05153","scoring_system":"epss","scoring_elements":"0.90078","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4345"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4345","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4345"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=385060","reference_id":"385060","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=385060"},{"reference_url":"https://security.gentoo.org/glsa/200610-15","reference_id":"GLSA-200610-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200610-15"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1tk1-rue9-6ug2"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-1zx2-1zmc-cfc2"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ujk-8wc9-uufu"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-66xs-kat9-j3d1"},{"vulnerability":"VCID-6jar-s4wy-6yek"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-6xdc-c4wy-m3dr"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-7u7r-v9zz-sugu"},{"vulnerability":"VCID-88nz-dd1a-3uc8"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8nu6-n38z-kyfw"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a83b-2vdm-f7g1"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-assz-3mbc-fygg"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-c8z6-4zc2-u3fm"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-e9a9-quqt-gbe8"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fbh2-kfn9-z7fs"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gnhb-813u-1qc2"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-hxjd-d7ht-cba2"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m43n-684g-9fg5"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rhys-s4x1-6ba5"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-rxy8-6uup-myhg"},{"vulnerability":"VCID-rxym-j9ke-4uhx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sejy-upm7-tba7"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-sn1u-bvfg-17h6"},{"vulnerability":"VCID-sqqd-w4x3-rybc"},{"vulnerability":"VCID-sqr5-tr3r-gud5"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-u91y-d563-q7bp"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-wv84-kurn-f3c1"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-yxbc-8kez-sufx"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"},{"vulnerability":"VCID-zw6v-42uj-fqak"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}],"aliases":["CVE-2006-4345"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ksvq-tcgp-kyeb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/58843?format=json","vulnerability_id":"VCID-swue-pu59-j3dd","summary":"Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x before 1.0.12 and 1.2.x before 1.2.13, as used by Cisco SCCP phones, allows remote attackers to execute arbitrary code via a certain dlen value that passes a signed integer comparison and leads to a heap-based buffer overflow.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-5444","reference_id":"","reference_type":"","scores":[{"value":"0.87055","scoring_system":"epss","scoring_elements":"0.99457","published_at":"2026-06-04T12:55:00Z"},{"value":"0.87055","scoring_system":"epss","scoring_elements":"0.99458","published_at":"2026-06-08T12:55:00Z"},{"value":"0.87055","scoring_system":"epss","scoring_elements":"0.99459","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-5444"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5444","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5444"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=395080","reference_id":"395080","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=395080"},{"reference_url":"https://security.gentoo.org/glsa/200610-15","reference_id":"GLSA-200610-15","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200610-15"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/2597.pl","reference_id":"OSVDB-29972;CVE-2006-5444","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/2597.pl"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/201245?format=json","purl":"pkg:deb/debian/asterisk@1:1.2.13~dfsg-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-13m8-y787-fqb7"},{"vulnerability":"VCID-18ap-sn7u-s3hd"},{"vulnerability":"VCID-1fd7-cjxx-wbdv"},{"vulnerability":"VCID-1tk1-rue9-6ug2"},{"vulnerability":"VCID-1vcu-q5ry-5fac"},{"vulnerability":"VCID-1vcu-s8ab-8ua7"},{"vulnerability":"VCID-1vug-1t5p-pug9"},{"vulnerability":"VCID-1z85-kfv8-8bgg"},{"vulnerability":"VCID-1zx2-1zmc-cfc2"},{"vulnerability":"VCID-25c9-w334-gbdn"},{"vulnerability":"VCID-29xh-xmhv-3ffs"},{"vulnerability":"VCID-34d5-vz5m-mqc5"},{"vulnerability":"VCID-3a1q-j5qj-rbfk"},{"vulnerability":"VCID-3jqh-ryws-53ht"},{"vulnerability":"VCID-3q36-jek6-wked"},{"vulnerability":"VCID-3ypw-ky7u-auf4"},{"vulnerability":"VCID-49c5-8sng-rfd9"},{"vulnerability":"VCID-4r9d-zq25-qkhv"},{"vulnerability":"VCID-4u5u-18fg-gke4"},{"vulnerability":"VCID-4ujk-8wc9-uufu"},{"vulnerability":"VCID-4ysp-qqgf-7ubg"},{"vulnerability":"VCID-551t-n4qb-p3hq"},{"vulnerability":"VCID-58kk-nrpx-m3h5"},{"vulnerability":"VCID-5vzn-5rbf-e3hb"},{"vulnerability":"VCID-64mt-9155-tkbv"},{"vulnerability":"VCID-66xs-kat9-j3d1"},{"vulnerability":"VCID-6jar-s4wy-6yek"},{"vulnerability":"VCID-6msa-75ph-qkf1"},{"vulnerability":"VCID-6pux-8x85-1fgx"},{"vulnerability":"VCID-6ts7-gv4q-tbg2"},{"vulnerability":"VCID-6xdc-c4wy-m3dr"},{"vulnerability":"VCID-7ak5-wcah-s7ed"},{"vulnerability":"VCID-7pec-5h4d-yff4"},{"vulnerability":"VCID-7u7r-v9zz-sugu"},{"vulnerability":"VCID-88nz-dd1a-3uc8"},{"vulnerability":"VCID-8gc8-cyb2-gube"},{"vulnerability":"VCID-8nu6-n38z-kyfw"},{"vulnerability":"VCID-8t63-f1tx-7bdy"},{"vulnerability":"VCID-8ttw-uus5-ybbq"},{"vulnerability":"VCID-92c9-qp87-bfc4"},{"vulnerability":"VCID-9nef-5fj4-wbbp"},{"vulnerability":"VCID-a2r2-kh13-y7cr"},{"vulnerability":"VCID-a83b-2vdm-f7g1"},{"vulnerability":"VCID-a9et-qfg6-yudx"},{"vulnerability":"VCID-ab4w-jnxz-aka8"},{"vulnerability":"VCID-assz-3mbc-fygg"},{"vulnerability":"VCID-avwt-12vk-8ybn"},{"vulnerability":"VCID-b3wc-8zzz-wbhq"},{"vulnerability":"VCID-b44e-ck1f-xbbh"},{"vulnerability":"VCID-b6fe-tfcc-ekc7"},{"vulnerability":"VCID-be9t-dvvc-ubaw"},{"vulnerability":"VCID-bt6h-dkwf-h7dm"},{"vulnerability":"VCID-bv7m-v54w-uyg5"},{"vulnerability":"VCID-c7cg-3ryv-x3ae"},{"vulnerability":"VCID-c8z6-4zc2-u3fm"},{"vulnerability":"VCID-cdyb-1ntz-63as"},{"vulnerability":"VCID-cfve-f8ja-nqcp"},{"vulnerability":"VCID-cjq2-aavb-8udt"},{"vulnerability":"VCID-czvg-g2nd-37da"},{"vulnerability":"VCID-d9tf-a5h1-f3ck"},{"vulnerability":"VCID-ddbj-f24k-ubb1"},{"vulnerability":"VCID-dfj1-mvja-dbh2"},{"vulnerability":"VCID-drvj-6p87-rqcn"},{"vulnerability":"VCID-e9a9-quqt-gbe8"},{"vulnerability":"VCID-ej5v-pfx7-zfdh"},{"vulnerability":"VCID-fb56-35es-v3bz"},{"vulnerability":"VCID-fbh2-kfn9-z7fs"},{"vulnerability":"VCID-ffwt-4r8y-b3dj"},{"vulnerability":"VCID-fhr4-94gw-bfbu"},{"vulnerability":"VCID-fvk6-m3pz-sybd"},{"vulnerability":"VCID-fzjk-q6nw-jkg9"},{"vulnerability":"VCID-g2xy-5xqx-xken"},{"vulnerability":"VCID-gnhb-813u-1qc2"},{"vulnerability":"VCID-gra2-m4vj-57aa"},{"vulnerability":"VCID-gura-3nu8-mug1"},{"vulnerability":"VCID-hf8b-8hgv-xyhw"},{"vulnerability":"VCID-hg7k-rqnx-nue9"},{"vulnerability":"VCID-hxjd-d7ht-cba2"},{"vulnerability":"VCID-j37t-xmde-ybfz"},{"vulnerability":"VCID-jggd-7y6n-5kh6"},{"vulnerability":"VCID-jqj2-grqv-73ht"},{"vulnerability":"VCID-jxc9-g6jq-ykes"},{"vulnerability":"VCID-k18v-akzq-5qd4"},{"vulnerability":"VCID-kfga-1zjj-yyd2"},{"vulnerability":"VCID-ktdt-nt2k-ekh2"},{"vulnerability":"VCID-ky73-mqpf-97gy"},{"vulnerability":"VCID-m43n-684g-9fg5"},{"vulnerability":"VCID-m9ex-4zdb-z7ek"},{"vulnerability":"VCID-mmtv-ad5m-5bf1"},{"vulnerability":"VCID-mszp-vjvd-y7bm"},{"vulnerability":"VCID-mv3r-bq3z-ekby"},{"vulnerability":"VCID-n31e-a95y-pqag"},{"vulnerability":"VCID-n51b-qqvd-j3h8"},{"vulnerability":"VCID-nkdv-45yg-yqen"},{"vulnerability":"VCID-nq8x-bhsd-4ug6"},{"vulnerability":"VCID-nv71-45bm-4qg8"},{"vulnerability":"VCID-pdq4-837m-j3b9"},{"vulnerability":"VCID-pqe1-z1sj-xub6"},{"vulnerability":"VCID-qagm-1qhg-euga"},{"vulnerability":"VCID-qfwp-7bsd-rfdy"},{"vulnerability":"VCID-qktv-zzmr-ebfx"},{"vulnerability":"VCID-quty-k7e9-kbbm"},{"vulnerability":"VCID-qx2s-jc4s-akcy"},{"vulnerability":"VCID-rgqf-d63e-3be8"},{"vulnerability":"VCID-rhej-23wp-v7cj"},{"vulnerability":"VCID-rhys-s4x1-6ba5"},{"vulnerability":"VCID-rjjh-8qvd-mug4"},{"vulnerability":"VCID-rskg-bn1a-sud4"},{"vulnerability":"VCID-ru68-dmrf-bfbx"},{"vulnerability":"VCID-rvpk-fjgv-6uah"},{"vulnerability":"VCID-rxy8-6uup-myhg"},{"vulnerability":"VCID-rxym-j9ke-4uhx"},{"vulnerability":"VCID-ryqs-4pz8-3fev"},{"vulnerability":"VCID-sejy-upm7-tba7"},{"vulnerability":"VCID-sg6p-n1uu-mqd2"},{"vulnerability":"VCID-sjyv-baqy-6kc1"},{"vulnerability":"VCID-sm86-77g8-fkf1"},{"vulnerability":"VCID-sn1u-bvfg-17h6"},{"vulnerability":"VCID-sqqd-w4x3-rybc"},{"vulnerability":"VCID-sqr5-tr3r-gud5"},{"vulnerability":"VCID-srvv-thfv-tfhw"},{"vulnerability":"VCID-suen-87s4-57bj"},{"vulnerability":"VCID-sxye-u2q3-zfa7"},{"vulnerability":"VCID-t1ud-cwjk-s3fd"},{"vulnerability":"VCID-t3yc-fyyy-6uhb"},{"vulnerability":"VCID-t4nc-bdjz-yfgu"},{"vulnerability":"VCID-t6xj-x5br-c3cj"},{"vulnerability":"VCID-t755-8tku-2kap"},{"vulnerability":"VCID-tnxu-ew29-9ybe"},{"vulnerability":"VCID-tpeb-5b8c-63cr"},{"vulnerability":"VCID-u2e9-pq21-bkha"},{"vulnerability":"VCID-u91y-d563-q7bp"},{"vulnerability":"VCID-uhwr-b373-a3bz"},{"vulnerability":"VCID-un2s-uxx4-13cc"},{"vulnerability":"VCID-uwrc-sb51-zqes"},{"vulnerability":"VCID-uxyg-qw5v-qqcx"},{"vulnerability":"VCID-v6a3-ycc7-mkd8"},{"vulnerability":"VCID-v8ev-6zfb-xqfz"},{"vulnerability":"VCID-vnu7-wjv8-eyed"},{"vulnerability":"VCID-vsaj-f564-akc4"},{"vulnerability":"VCID-vszf-c7zd-xuce"},{"vulnerability":"VCID-vte2-1rmy-73dz"},{"vulnerability":"VCID-vzrk-rtxu-k7fd"},{"vulnerability":"VCID-w4xt-e4ug-fkd4"},{"vulnerability":"VCID-we23-mfgn-qkg8"},{"vulnerability":"VCID-wh6v-jyca-jkce"},{"vulnerability":"VCID-wkkh-ka74-ubh6"},{"vulnerability":"VCID-wv84-kurn-f3c1"},{"vulnerability":"VCID-xatv-urh7-1uak"},{"vulnerability":"VCID-xcp6-cew8-7fe1"},{"vulnerability":"VCID-xn9t-7f61-ufgz"},{"vulnerability":"VCID-xrcr-xhum-mbfq"},{"vulnerability":"VCID-xrmk-pm2g-xfaf"},{"vulnerability":"VCID-xykr-v7tc-2fhx"},{"vulnerability":"VCID-xzkj-pajj-dqbj"},{"vulnerability":"VCID-y7sm-4jy3-dfaw"},{"vulnerability":"VCID-yekm-v6qe-auch"},{"vulnerability":"VCID-yhbv-p3ze-nkhc"},{"vulnerability":"VCID-ykhc-wcyu-5kfc"},{"vulnerability":"VCID-ynpa-cb9a-47em"},{"vulnerability":"VCID-ypjq-tgrg-jkff"},{"vulnerability":"VCID-yxbc-8kez-sufx"},{"vulnerability":"VCID-z23z-6v1y-efek"},{"vulnerability":"VCID-z8ac-81bd-7bep"},{"vulnerability":"VCID-z9b5-rgxt-jbe3"},{"vulnerability":"VCID-z9du-84uc-x3gw"},{"vulnerability":"VCID-zk2p-hxmz-yqhb"},{"vulnerability":"VCID-zrts-thu2-kuh5"},{"vulnerability":"VCID-zv8y-1d3c-s3bk"},{"vulnerability":"VCID-zw6v-42uj-fqak"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}],"aliases":["CVE-2006-5444"],"risk_score":1.6,"exploitability":"2.0","weighted_severity":"0.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-swue-pu59-j3dd"}],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/asterisk@1:1.2.13~dfsg-2"}