CVE-2022-26499

CVE Database · CVE-2022-26499

CVE-2022-26499

· CRITICALModified

CVSS v3.1

9.1

EPSS

7.21%

Published

Apr 15, 2022

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An SSRF issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it's possible to send arbitrary requests (such as GET) to interfaces such as localhost by using the Identity header. This is fixed in 16.25.2, 18.11.2, and 19.3.2.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Weaknesses (CWE)

CWE-918

Affected Products (5)

digium · asteriskvulnerable

digium · asterisk (up to 18.11.2)vulnerable

digium · asteriskvulnerable

debian · debian_linuxvulnerable

References (10)

http://packetstormsecurity.com/files/166745/Asterisk-Project-Security-Advisory-AST-2022-002.html

PatchThird Party AdvisoryVDB Entry

https://downloads.asterisk.org/pub/security/

Vendor Advisory

https://downloads.asterisk.org/pub/security/AST-2022-002.html

PatchVendor Advisory

https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html

Issue TrackingThird Party Advisory

https://www.debian.org/security/2022/dsa-5285

Third Party Advisory

http://packetstormsecurity.com/files/166745/Asterisk-Project-Security-Advisory-AST-2022-002.html

KEV Catalog EPSS Scores Vendors All CVEs