CVE-2024-42365 | Asterisk PBX Configuration File /etc/asterisk/ privilege defined with unsafe actions

Posted by Angelo Barbosa | Aug 8, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Asterisk PBX up to 18.9-cert10/18.24.1/20.9.1/20.7-cert1/21.4.1. Affected by this issue is some unknown functionality of the file /etc/asterisk/ of the component Configuration File Handler. The manipulation leads to privilege defined with unsafe actions.

This vulnerability is handled as CVE-2024-42365. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-42365 | Asterisk PBX Configuration File /etc/asterisk/ privilege defined with unsafe actions

Related Posts

CVE-2021-47497 | Linux Kernel up to 5.14.13 drivers/nvmem/core.c out-of-bounds

CVE-2024-43856 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 dmam_free_coherent allocation of resources

CVE-2023-5808 | Hitachi Vantara HNAS up to 14.8.7825.01 on Windows improper authorization

CVE-2023-6373 | ArtPlacer Widget Plugin up to 2.20.6 on WordPress sql injection