Multiple Vulnerabilities in Asterisk Allow Local Privilege Escalation and Denial of Service

72% confidence

Description

Multiple vulnerabilities in Asterisk can be exploited by a remote, anonymous attacker to perform a denial-of-service attack, bypass security measures, or execute a SQL injection.

Affected Products

Vendor	Product	Versions
digium	asterisk	—

Related News (2 articles)

Tier B

BSI Advisories5h ago

[UPDATE] [mittel] Asterisk: Mehrere Schwachstellen

→ No new info (linked only)

Tier B

BSI Advisories5h ago

[UPDATE] [hoch] Asterisk: Mehrere Schwachstellen

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

PublishedApr 13, 2026

Last enriched5h agov2

Community Vote

0 upvotes0 downvotes

No votes yet

Vulnerability Timeline

CVE Published

Apr 13, 2026

Actively Exploited

Apr 13, 2026

Exploit Available

Apr 13, 2026

Discovered by ZDM

Apr 13, 2026

Updated: description, severity, exploitAvailable, activelyExploited, tags

Apr 13, 2026

Version History

Last enriched 5h ago

v2Tier B5h ago

Updated description with new attack vectors, changed severity to HIGH, and marked the vulnerability as actively exploited with an available exploit.

descriptionseverityexploitAvailableactivelyExploitedtags

via BSI Advisories

v15h ago

Initial creation

Multiple Vulnerabilities in Asterisk Allow Local Privilege Escalation and Denial of Service

Description

Affected Products

Related News (2 articles)

Community Vote

Pin to Dashboard

Verification

Vulnerability Timeline

Version History