VDB
CVE-2022-21723
CVE-2022-21723
PUBLISHED
Asterisk ist eine komplette Open Source Multiprotokoll Telefonanlage (PBX) auf Softwarebasis. Certified Asterisk ist eine komplette Multiprotokoll Telefonanlage (PBX) auf Softwarebasis mit erweitertem Support.
EPSS 0.47% · 64.8th percentile
Risk Scores
EPSS Score
0.47%
64.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | |
| Open Source | Open Source Asterisk <18.10.1 | |
| Digium | Digium Certified Asterisk <16.8-cert13 | |
| Ubuntu | Ubuntu Linux | |
| Open Source | Open Source Asterisk <19.2.1 | |
| Open Source | Open Source Asterisk <16.24.1 |
Timeline
- Jan 26, 2022 CVE Published
- Feb 8, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 24, 2022 EPSS Score
- Sep 7, 2022 EPSS Score
- Oct 29, 2022 EPSS Score
- Dec 20, 2022 EPSS Score
- Feb 11, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 4, 2023 EPSS Score
- Jul 18, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2108.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2108 advisory
- https://downloads.asterisk.org/pub/security/AST-2022-004.html advisory
- https://downloads.asterisk.org/pub/security/AST-2022-005.html advisory
- https://downloads.asterisk.org/pub/security/AST-2022-006.html advisory
- https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html advisory
- https://lists.debian.org/debian-security-announce/2022/msg00256.html advisory
- https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html advisory
- https://ubuntu.com/security/notices/USN-8122-1 advisory