Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
ConfBridge in Asterisk 11.x before 11.14.1 and Certified Asterisk 11.6 before 11.6-cert8 does not properly handle state changes, which allows remote attackers to cause a denial of service (channel hang and memory consumption) by causing transitions to be delayed, which triggers a state change from hung up to waiting for media.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Digium Asterisk和Asterisk Open Source ConfBridge 资源管理错误漏洞
Vulnerability Description
Digium Asterisk和Certified Asterisk都是美国Digium公司的开源电话交换机(PBX)系统软件,它支持语音信箱、多方语音会议、交互式语音应答(IVR)等。ConfBridge是其中的一个用于实现会议应用的应用程序。 Digium Asterisk 11.14.0及之前版本和Certified Asterisk 11.6-cert8之前11.6版本的ConfBridge程序中存在安全漏洞,该漏洞源于程序没有正确处理状态转换。远程攻击者可通过推迟转换利用该漏洞造成拒绝服务(通道
CVSS Information
N/A
Vulnerability Type
N/A