CVE-2014-6610

CVE Database · CVE-2014-6610

CVE-2014-6610

· N/AModified

CVSS v3.1

N/A

EPSS

1.52%

Published

Nov 26, 2014

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1 and Certified Asterisk 11.6 before 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly handled in the ReceiveFax dialplan application.

Weaknesses (CWE)

CWE-19

Affected Products (63)

digium · certified_asteriskvulnerable

digium · asteriskvulnerable

References (2)

http://downloads.asterisk.org/pub/security/AST-2014-010.html

PatchVendor Advisory

http://downloads.asterisk.org/pub/security/AST-2014-010.html

PatchVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs

digium · asteriskvulnerable