Security Advisory

CVE-2014-8418

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-11-24 15:00:00

Last updated 2024-08-06 13:18:47

Assigner mitre

State PUBLISHED

Description

The DB dialplan function in Asterisk Open Source 1.8.x before 1.8.32, 11.x before 11.1.4.1, 12.x before 12.7.1, and 13.x before 13.0.1 and Certified Asterisk 1.8 before 1.8.28-cert8 and 11.6 before 11.6-cert8 allows remote authenticated users to gain privileges via a call from an external protocol, as demonstrated by the AMI protocol.

← Browse all CVEs View on cve.org ↗