CVE-2025-49832

Published: Aug 1, 2025Modified: Aug 25, 2025

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

Asterisk is an open source private branch exchange and telephony toolkit. In versions up to and including 18.26.2, between 20.00.0 and 20.15.0, 20.7-cert6, 21.00.0, 22.00.0 through 22.5.0, there is a remote DoS and possible RCE condition in `asterisk/res/res_stir_shaken /verification.c` that can be exploited when an attacker can set an arbitrary Identity header, or STIR/SHAKEN is enabled, with verification set in the SIP profile associated with the endpoint to be attacked. This is fixed in versions 18.26.3, 20.7-cert6, 20.15.1, 21.10.1 and 22.5.1.

Affected (13)

Products: Sangoma: Asterisk, Certified Asterisk

Sangoma

2 products

Asterisk

Certified Asterisk

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Sangoma Asterisk	Before 18.26.3
Sangoma Asterisk	From 20.0.0 to 20.15.1
Sangoma Asterisk	From 21.0.0 to 21.10.1
Sangoma Asterisk	From 22.0.0 to 22.5.1

Configuration B

9 vulnerable

Vulnerable Software	Affected Versions
Sangoma Certified Asterisk	Up to 18.9
Sangoma Certified Asterisk	Version 20.7 cert1-rc1
Sangoma Certified Asterisk	Version 20.7 cert1-rc2
Sangoma Certified Asterisk	Version 20.7 cert1
Sangoma Certified Asterisk	Version 20.7 cert2
Sangoma Certified Asterisk	Version 20.7 cert3
Sangoma Certified Asterisk	Version 20.7 cert4
Sangoma Certified Asterisk	Version 20.7 cert5
Sangoma Certified Asterisk	Version 20.7 cert6

Related CWEs

CWE-476

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

References (1)

https://github.com/asterisk/asterisk/security/advisories/GHSA-mrq5-74j5-f5cr

Source: security-advisories@github.com

ExploitVendor Advisory

Timeline

No history available yet.