5
CVE-2014-4047
- EPSS 11.71%
- Veröffentlicht 17.06.2014 14:55:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Asterisk Open Source 1.8.x before 1.8.28.1, 11.x before 11.10.1, and 12.x before 12.3.1 and Certified Asterisk 1.8.15 before 1.8.15-cert6 and 11.6 before 11.6-cert3 allows remote attackers to cause a denial of service (connection consumption) via a large number of (1) inactive or (2) incomplete HTTP connections.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Digium ≫ Certified Asterisk Version1.8.15 Update-
Digium ≫ Certified Asterisk Version1.8.15 Updatecert1
Digium ≫ Certified Asterisk Version1.8.15 Updatecert1_rc1
Digium ≫ Certified Asterisk Version1.8.15 Updatecert1_rc2
Digium ≫ Certified Asterisk Version1.8.15 Updatecert1_rc3
Digium ≫ Certified Asterisk Version1.8.15 Updatecert2
Digium ≫ Certified Asterisk Version1.8.15 Updatecert3
Digium ≫ Certified Asterisk Version1.8.15 Updatecert4
Digium ≫ Certified Asterisk Version1.8.15 Updatecert5
Digium ≫ Certified Asterisk Version11.6 Updatecert1
Digium ≫ Certified Asterisk Version11.6 Updatecert1_rc1
Digium ≫ Certified Asterisk Version11.6 Updatecert1_rc2
Digium ≫ Certified Asterisk Version11.6 Updatecert2
Digium ≫ Certified Asterisk Version11.6.0 Update-
Digium ≫ Certified Asterisk Version11.6.0 Updaterc1
Digium ≫ Certified Asterisk Version11.6.0 Updaterc2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 11.71% | 0.935 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|