CVE-2020-35776

Published: Feb 18, 2021Modified: Jun 17, 2026

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

A buffer overflow in res_pjsip_diversion.c in Sangoma Asterisk versions 13.38.1, 16.15.1, 17.9.1, and 18.1.1 allows remote attacker to crash Asterisk by deliberately misusing SIP 181 responses.

Affected (4)

Products: Digium: Asterisk

Digium

1 product

Asterisk

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Digium Asterisk	From 13.0.0 to 13.38.1
Digium Asterisk	From 16.0.0 to 16.15.1
Digium Asterisk	From 17.0.0 to 17.9.1
Digium Asterisk	From 18.0 to 18.1.1

Related CWEs

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (10)

http://packetstormsecurity.com/files/161470/Asterisk-Project-Security-Advisory-AST-2021-001.html

Source: cve@mitre.org

PatchThird Party Advisory

http://seclists.org/fulldisclosure/2021/Feb/57

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://downloads.asterisk.org/pub/security/AST-2021-001.html

Source: cve@mitre.org

Vendor Advisory

https://issues.asterisk.org/

Source: cve@mitre.org

Issue TrackingVendor Advisory

https://issues.asterisk.org/jira/browse/ASTERISK-29227

Source: cve@mitre.org

ExploitIssue TrackingPatchVendor Advisory

http://packetstormsecurity.com/files/161470/Asterisk-Project-Security-Advisory-AST-2021-001.html