VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
epss	0.64192	https://api.first.org/data/v1/epss?cve=CVE-2018-7284
cvssv2	5.0	https://nvd.nist.gov/vuln/detail/CVE-2018-7284
cvssv3	7.5	https://nvd.nist.gov/vuln/detail/CVE-2018-7284

System

Score

Found at

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

epss

0.64192

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

cvssv2

5.0

https://nvd.nist.gov/vuln/detail/CVE-2018-7284

cvssv3

7.5

https://nvd.nist.gov/vuln/detail/CVE-2018-7284

Reference id	Reference type	URL
		http://downloads.asterisk.org/pub/security/AST-2018-004.html
		https://api.first.org/data/v1/epss?cve=CVE-2018-7284
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286
		https://www.debian.org/security/2018/dsa-4320
		https://www.exploit-db.com/exploits/44184/
		http://www.securityfocus.com/bid/103151
		http://www.securitytracker.com/id/1040416
891227		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891227
cpe:2.3:a:digium:asterisk::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:digium:asterisk::::::::
cpe:2.3:a:digium:certified_asterisk::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:digium:certified_asterisk::::::::
cpe:2.3:a:digium:certified_asterisk:13.18:cert1::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:digium:certified_asterisk:13.18:cert1::::::
cpe:2.3:a:digium:certified_asterisk:13.18:cert2::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:digium:certified_asterisk:13.18:cert2::::::
cpe:2.3:o:debian:debian_linux:9.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
CVE-2018-7284	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44184.py
CVE-2018-7284		https://nvd.nist.gov/vuln/detail/CVE-2018-7284
CVE-2018-7284	Exploit	https://raw.githubusercontent.com/EnableSecurity/advisories/master/ES2018-01-asterisk-pjsip-subscribe-stack-corruption/README.md

Reference id

Reference type

URL

http://downloads.asterisk.org/pub/security/AST-2018-004.html

https://api.first.org/data/v1/epss?cve=CVE-2018-7284

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12227

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17281

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7284

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7286

https://www.debian.org/security/2018/dsa-4320

https://www.exploit-db.com/exploits/44184/

http://www.securityfocus.com/bid/103151

http://www.securitytracker.com/id/1040416

891227

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891227

cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*

cpe:2.3:a:digium:certified_asterisk:*:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:digium:certified_asterisk:*:*:*:*:*:*:*:*

cpe:2.3:a:digium:certified_asterisk:13.18:cert1:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:digium:certified_asterisk:13.18:cert1:*:*:*:*:*:*

cpe:2.3:a:digium:certified_asterisk:13.18:cert2:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:digium:certified_asterisk:13.18:cert2:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

CVE-2018-7284

Exploit

https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44184.py

CVE-2018-7284

https://nvd.nist.gov/vuln/detail/CVE-2018-7284

CVE-2018-7284

Exploit

https://raw.githubusercontent.com/EnableSecurity/advisories/master/ES2018-01-asterisk-pjsip-subscribe-stack-corruption/README.md

Data source	Exploit-DB
Date added	Feb. 27, 2018
Description	Asterisk chan_pjsip 15.2.0 - 'SUBSCRIBE' Stack Corruption
Ransomware campaign use	Known
Source publication date	Feb. 27, 2018
Exploit type	dos
Platform	linux
Source update date	Feb. 27, 2018
Source URL	https://raw.githubusercontent.com/EnableSecurity/advisories/master/ES2018-01-asterisk-pjsip-subscribe-stack-corruption/README.md

Exploit-DB

Feb. 27, 2018

Asterisk chan_pjsip 15.2.0 - 'SUBSCRIBE' Stack Corruption

Known

Feb. 27, 2018

dos

linux

Feb. 27, 2018

https://raw.githubusercontent.com/EnableSecurity/advisories/master/ES2018-01-asterisk-pjsip-subscribe-stack-corruption/README.md

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T10:36:56.627226+00:00	Debian Oval Importer	Import	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	37.0.0

2025-07-31T10:36:56.627226+00:00

Debian Oval Importer

Import

https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2

37.0.0

Vulnerability ID	VCID-1ex7-49kd-fygc
Aliases	CVE-2018-7284
Summary	security update
Status	Published
Exploitability	2.0
Weighted Severity	6.8
Risk	10.0
Affected and Fixed Packages	Package Details

Percentile	0.98347
EPSS Score	0.64192
Published At	July 31, 2025, 12:55 p.m.