Digium Asterisk 10.8.0 release candidate 2

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:digium:asterisk:10.8.0:rc2:*:*:*:*:*:*

part: a version: 10.8.0 update: rc2

VendorDigium (05ad29b7-5b41-56d5-935d-a279ab7f14bc)
ProductAsterisk (a75a6886-b0b4-5160-9cfa-f749f3c86956)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:github/asterisk/asterisk purl2cpe 2026-06-01 10:15:41.737726

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2012-5977 vulnerable 2026-06-08 05:02:58.946434 Details available
Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk Digiumphones 10.x-digiumphones before 10.11.1-digiumphones, when anonymous calls are enabled, allow remote attackers to cause a denial of service (resource consumption) by making anonymous calls from multiple sources and consequently adding many entries to the device state cache.
Published: 2013-01-04T15:00:00.000Z
Updated: 2024-08-06T21:21:28.317Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2012-5976 vulnerable 2026-06-08 05:02:58.914704 Details available
Multiple stack consumption vulnerabilities in Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk Digiumphones 10.x-digiumphones before 10.11.1-digiumphones allow remote attackers to cause a denial of service (daemon crash) via TCP data using the (1) SIP, (2) HTTP, or (3) XMPP protocol.
Published: 2013-01-04T11:00:00.000Z
Updated: 2024-08-06T21:21:28.331Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.