VDB
CVE-2018-17281
CVE-2018-17281
PUBLISHED
There is a stack consumption vulnerability in the res_http_websocket.so module of Asterisk through 13.23.0, 14.7.x through 14.7.7, and 15.x through 15.6.0 and Certified Asterisk through 13.21-cert2. It allows an attacker to crash Asterisk via a specially crafted HTTP request to upgrade the connection to a websocket.
EPSS 80.26% · 99.1th percentile
Risk Scores
EPSS Score
80.26%
99.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | asterisk | 0, 1:13.17.2~dfsg-1ubuntu1, 1:13.17.2~dfsg-2ubuntu1 |
| Ubuntu:Pro:16.04:LTS | asterisk | 0, 1:13.1.0~dfsg-1.1ubuntu3, 1:13.1.0~dfsg-1.1ubuntu4.1 |
Exploit Intelligence
- CIRCL seen: CVE-2018-17281 (circl-sighting)
- 1041694 (circl)
- 20180920 AST-2018-009: Remote crash vulnerability in HTTP websocket upgrade (circl)
- http://packetstormsecurity.com/files/149453/Asterisk-Project-Security-Advisory-AST-2018-009.html (circl)
- DSA-4320 (circl)
- 20180920 AST-2018-009: Remote crash vulnerability in HTTP websocket upgrade (circl)
- https://issues.asterisk.org/jira/browse/ASTERISK-28013 (circl)
- [debian-lts-announce] 20180927 [SECURITY] [DLA 1523-1] asterisk security update (circl)
- GLSA-201811-11 (circl)
- 105389 (circl)
…and 1 more exploits
Timeline
- Sep 21, 2018 PoC Published
- Sep 24, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 13, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2018-17281 third-party-advisory
- https://downloads.asterisk.org/pub/security/AST-2018-009.html third-party-advisory
- https://issues.asterisk.org/jira/browse/ASTERISK-28013 third-party-advisory
- http://downloads.asterisk.org/pub/security/AST-2018-009.html third-party-advisory
- http://packetstormsecurity.com/files/149453/Asterisk-Project-Security-Advisory-AST-2018-009.html third-party-advisory
- http://seclists.org/fulldisclosure/2018/Sep/31 third-party-advisory
- http://www.securitytracker.com/id/1041694 third-party-advisory
- https://seclists.org/bugtraq/2018/Sep/53 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2018-17281 third-party-advisory