CVE-2015-3008

EPSS 39.03%
Veröffentlicht 10.04.2015 15:00:10
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Asterisk Open Source 1.8 before 1.8.32.3, 11.x before 11.17.1, 12.x before 12.8.2, and 13.x before 13.3.2 and Certified Asterisk 1.8.28 before 1.8.28-cert5, 11.6 before 11.6-cert11, and 13.1 before 13.1-cert2, when registering a SIP TLS device, does not properly handle a null byte in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 13

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Digium ≫ Asterisk Version1.8.0

Digium ≫ Asterisk Version1.8.0 Updatebeta1

Digium ≫ Asterisk Version1.8.0 Updatebeta2

Digium ≫ Asterisk Version1.8.0 Updatebeta3

Digium ≫ Asterisk Version1.8.0 Updatebeta4

Digium ≫ Asterisk Version1.8.0 Updatebeta5

Digium ≫ Asterisk Version1.8.0 Updaterc2

Digium ≫ Asterisk Version1.8.0 Updaterc3

Digium ≫ Asterisk Version1.8.0 Updaterc4

Digium ≫ Asterisk Version1.8.0 Updaterc5

Digium ≫ Asterisk Version1.8.1

Digium ≫ Asterisk Version1.8.1 Updaterc1

Digium ≫ Asterisk Version1.8.1.1

Digium ≫ Asterisk Version1.8.1.2

Digium ≫ Asterisk Version1.8.2

Digium ≫ Asterisk Version1.8.2.1

Digium ≫ Asterisk Version1.8.2.2

Digium ≫ Asterisk Version1.8.2.3

Digium ≫ Asterisk Version1.8.2.4

Digium ≫ Asterisk Version1.8.3

Digium ≫ Asterisk Version1.8.3 Updaterc1

Digium ≫ Asterisk Version1.8.3 Updaterc2

Digium ≫ Asterisk Version1.8.3 Updaterc3

Digium ≫ Asterisk Version1.8.3.1

Digium ≫ Asterisk Version1.8.3.2

Digium ≫ Asterisk Version1.8.3.3

Digium ≫ Asterisk Version1.8.10.0

Digium ≫ Asterisk Version1.8.10.0 Update-

Digium ≫ Asterisk Version1.8.10.0 Updaterc1

Digium ≫ Asterisk Version1.8.10.0 Updaterc2

Digium ≫ Asterisk Version1.8.10.0 Updaterc3

Digium ≫ Asterisk Version1.8.10.0 Updaterc4

Digium ≫ Asterisk Version1.8.10.1

Digium ≫ Asterisk Version1.8.11.0

Digium ≫ Asterisk Version1.8.11.0 Update-

Digium ≫ Asterisk Version1.8.11.0 Updatepatch

Digium ≫ Asterisk Version1.8.11.0 Updaterc2

Digium ≫ Asterisk Version1.8.11.0 Updaterc3

Digium ≫ Asterisk Version1.8.11.1

Digium ≫ Asterisk Version1.8.11.1 Update-

Digium ≫ Asterisk Version1.8.11.1 Updatepatch

Digium ≫ Asterisk Version1.8.12

Digium ≫ Asterisk Version1.8.12.0

Digium ≫ Asterisk Version1.8.12.0 Update-

Digium ≫ Asterisk Version1.8.12.0 Updaterc1

Digium ≫ Asterisk Version1.8.12.0 Updaterc2

Digium ≫ Asterisk Version1.8.12.0 Updaterc3

Digium ≫ Asterisk Version1.8.12.1

Digium ≫ Asterisk Version1.8.12.2

Digium ≫ Asterisk Version1.8.13.0

Digium ≫ Asterisk Version1.8.13.0 Updaterc1

Digium ≫ Asterisk Version1.8.13.0 Updaterc2

Digium ≫ Asterisk Version1.8.13.1

Digium ≫ Asterisk Version1.8.14.0 Update-

Digium ≫ Asterisk Version1.8.14.0 Updatepatch

Digium ≫ Asterisk Version1.8.14.0 Updaterc1

Digium ≫ Asterisk Version1.8.14.0 Updaterc2

Digium ≫ Asterisk Version1.8.14.1

Digium ≫ Asterisk Version1.8.14.1 Update-

Digium ≫ Asterisk Version1.8.14.1 Updatepatch

Digium ≫ Asterisk Version1.8.15.0

Digium ≫ Asterisk Version1.8.15.0 Update-

Digium ≫ Asterisk Version1.8.15.0 Updaterc1

Digium ≫ Asterisk Version1.8.15.1

Digium ≫ Asterisk Version1.8.16.0

Digium ≫ Asterisk Version1.8.16.0 Update-

Digium ≫ Asterisk Version1.8.16.0 Updaterc1

Digium ≫ Asterisk Version1.8.16.0 Updaterc2

Digium ≫ Asterisk Version1.8.17.0

Digium ≫ Asterisk Version1.8.17.0 Update-

Digium ≫ Asterisk Version1.8.17.0 Updatepatch

Digium ≫ Asterisk Version1.8.17.0 Updaterc1

Digium ≫ Asterisk Version1.8.17.0 Updaterc2

Digium ≫ Asterisk Version1.8.17.0 Updaterc3

Digium ≫ Asterisk Version1.8.18.0

Digium ≫ Asterisk Version1.8.18.0 Update-

Digium ≫ Asterisk Version1.8.18.0 Updaterc1

Digium ≫ Asterisk Version1.8.18.1

Digium ≫ Asterisk Version1.8.19.0

Digium ≫ Asterisk Version1.8.19.0 Update-

Digium ≫ Asterisk Version1.8.19.0 Updaterc1

Digium ≫ Asterisk Version1.8.19.0 Updaterc3

Digium ≫ Asterisk Version1.8.19.1

Digium ≫ Asterisk Version1.8.20.0 Update-

Digium ≫ Asterisk Version1.8.20.0 Updatepatch

Digium ≫ Asterisk Version1.8.20.0 Updaterc1

Digium ≫ Asterisk Version1.8.20.0 Updaterc2

Digium ≫ Asterisk Version1.8.20.1 Update-

Digium ≫ Asterisk Version1.8.20.1 Updatepatch

Digium ≫ Asterisk Version1.8.20.2 Update-

Digium ≫ Asterisk Version1.8.20.2 Updatepatch

Digium ≫ Asterisk Version1.8.21.0 Update-

Digium ≫ Asterisk Version1.8.21.0 Updaterc1

Digium ≫ Asterisk Version1.8.21.0 Updaterc2

Digium ≫ Asterisk Version1.8.22.0 Update-

Digium ≫ Asterisk Version1.8.22.0 Updaterc1

Digium ≫ Asterisk Version1.8.22.0 Updaterc2

Digium ≫ Asterisk Version1.8.23.0 Update-

Digium ≫ Asterisk Version1.8.23.0 Updatepatch

Digium ≫ Asterisk Version1.8.23.0 Updaterc1

Digium ≫ Asterisk Version1.8.23.0 Updaterc2

Digium ≫ Asterisk Version1.8.23.1

Digium ≫ Asterisk Version1.8.24.0 Update-

Digium ≫ Asterisk Version1.8.24.0 Updaterc1

Digium ≫ Asterisk Version1.8.24.0 Updaterc2

Digium ≫ Asterisk Version1.8.24.1

Digium ≫ Asterisk Version1.8.25.0 Update-

Digium ≫ Asterisk Version1.8.25.0 Updaterc1

Digium ≫ Asterisk Version1.8.25.0 Updaterc2

Digium ≫ Asterisk Version1.8.26.0 Update-

Digium ≫ Asterisk Version1.8.26.0 Updaterc1

Digium ≫ Asterisk Version1.8.26.1

Digium ≫ Asterisk Version1.8.27.0

Digium ≫ Asterisk Version1.8.27.0 Updaterc1

Digium ≫ Asterisk Version1.8.27.0 Updaterc2

Digium ≫ Asterisk Version1.8.28.0

Digium ≫ Asterisk Version1.8.28.0 Updaterc1

Digium ≫ Asterisk Version1.8.28.1

Digium ≫ Asterisk Version1.8.28.2

Digium ≫ Asterisk Version1.8.32.0 SwEditionlts

Digium ≫ Asterisk Version11.0.0

Digium ≫ Asterisk Version11.0.0 Updatebeta1

Digium ≫ Asterisk Version11.0.0 Updatebeta2

Digium ≫ Asterisk Version11.0.0 Updaterc1

Digium ≫ Asterisk Version11.0.0 Updaterc2

Digium ≫ Asterisk Version11.0.1

Digium ≫ Asterisk Version11.0.2

Digium ≫ Asterisk Version11.1.0

Digium ≫ Asterisk Version11.1.0 Updaterc1

Digium ≫ Asterisk Version11.1.0 Updaterc2

Digium ≫ Asterisk Version11.1.0 Updaterc3

Digium ≫ Asterisk Version11.1.1

Digium ≫ Asterisk Version11.1.2

Digium ≫ Asterisk Version11.2.0 Updaterc1

Digium ≫ Asterisk Version11.2.0 Updaterc2

Digium ≫ Asterisk Version11.3.0 Updaterc1

Digium ≫ Asterisk Version11.3.0 Updaterc2

Digium ≫ Asterisk Version11.4.0

Digium ≫ Asterisk Version11.4.0 Updaterc1

Digium ≫ Asterisk Version11.4.0 Updaterc2

Digium ≫ Asterisk Version11.4.0 Updaterc3

Digium ≫ Asterisk Version11.4.0 Updaterc4

Digium ≫ Asterisk Version11.5.0

Digium ≫ Asterisk Version11.5.0 Updaterc1

Digium ≫ Asterisk Version11.5.0 Updaterc2

Digium ≫ Asterisk Version11.5.1

Digium ≫ Asterisk Version11.6.0

Digium ≫ Asterisk Version11.6.0 Updaterc1

Digium ≫ Asterisk Version11.6.0 Updaterc2

Digium ≫ Asterisk Version11.7.0

Digium ≫ Asterisk Version11.7.0 Updaterc1

Digium ≫ Asterisk Version11.7.0 Updaterc2

Digium ≫ Asterisk Version11.8.0 Update-

Digium ≫ Asterisk Version11.8.0 Updaterc1

Digium ≫ Asterisk Version11.8.0 Updaterc2

Digium ≫ Asterisk Version11.8.0 Updaterc3

Digium ≫ Asterisk Version11.8.1

Digium ≫ Asterisk Version11.9.0

Digium ≫ Asterisk Version11.9.0 Updaterc1

Digium ≫ Asterisk Version11.9.0 Updaterc2

Digium ≫ Asterisk Version11.9.0 Updaterc3

Digium ≫ Asterisk Version11.10.0

Digium ≫ Asterisk Version11.10.0 Updaterc1

Digium ≫ Asterisk Version11.10.1

Digium ≫ Asterisk Version11.10.1 Updaterc1

Digium ≫ Asterisk Version11.11.0

Digium ≫ Asterisk Version11.11.0 Updaterc1

Digium ≫ Asterisk Version11.12.0

Digium ≫ Asterisk Version11.12.0 Updaterc1

Digium ≫ Asterisk Version11.13.0

Digium ≫ Asterisk Version11.13.0 Updaterc1

Digium ≫ Asterisk Version11.14.0 SwEditionlts

Digium ≫ Asterisk Version11.14.0 Updaterc1

Digium ≫ Asterisk Version11.14.0 Updaterc2

Digium ≫ Asterisk Version11.15.0

Digium ≫ Asterisk Version11.16.0

Digium ≫ Asterisk Version11.17.0

Digium ≫ Asterisk Version12.0.0

Digium ≫ Asterisk Version12.1.0 Update-

Digium ≫ Asterisk Version12.1.0 Updaterc1

Digium ≫ Asterisk Version12.1.0 Updaterc2

Digium ≫ Asterisk Version12.1.0 Updaterc3

Digium ≫ Asterisk Version12.1.1

Digium ≫ Asterisk Version12.2.0

Digium ≫ Asterisk Version12.2.0 Updaterc1

Digium ≫ Asterisk Version12.2.0 Updaterc2

Digium ≫ Asterisk Version12.2.0 Updaterc3

Digium ≫ Asterisk Version12.3.0

Digium ≫ Asterisk Version12.3.0 Updaterc1

Digium ≫ Asterisk Version12.3.0 Updaterc2

Digium ≫ Asterisk Version12.3.1

Digium ≫ Asterisk Version12.3.2

Digium ≫ Asterisk Version12.4.0

Digium ≫ Asterisk Version12.4.0 Updaterc1

Digium ≫ Asterisk Version12.5.0

Digium ≫ Asterisk Version12.5.0 Updaterc1

Digium ≫ Asterisk Version12.6.0

Digium ≫ Asterisk Version12.6.0 Updaterc1

Digium ≫ Asterisk Version12.7.0 SwEditionlts

Digium ≫ Asterisk Version12.7.0 SwEditionstandard

Digium ≫ Asterisk Version12.7.0 Updaterc1

Digium ≫ Asterisk Version12.7.0 Updaterc2

Digium ≫ Asterisk Version12.7.1

Digium ≫ Asterisk Version12.8.0

Digium ≫ Asterisk Version12.8.0 Updaterc1

Digium ≫ Asterisk Version12.8.0 Updaterc2

Digium ≫ Asterisk Version12.8.1

Digium ≫ Asterisk Version13.0.0 SwEditionlts

Digium ≫ Asterisk Version13.0.1

Digium ≫ Asterisk Version13.1.0

Digium ≫ Asterisk Version13.1.0 Updaterc1

Digium ≫ Asterisk Version13.1.0 Updaterc2

Digium ≫ Asterisk Version13.2.0

Digium ≫ Asterisk Version13.2.0 Updaterc1

Digium ≫ Asterisk Version13.3.0

Digium ≫ Asterisk Version13.3.1

Digium ≫ Certified Asterisk Version1.8.0.0 Update-

Digium ≫ Certified Asterisk Version1.8.0.0 Updatebeta1

Digium ≫ Certified Asterisk Version1.8.0.0 Updatebeta2

Digium ≫ Certified Asterisk Version1.8.0.0 Updatebeta3

Digium ≫ Certified Asterisk Version1.8.0.0 Updatebeta4

Digium ≫ Certified Asterisk Version1.8.0.0 Updatebeta5

Digium ≫ Certified Asterisk Version1.8.0.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.0.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.0.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.0.0 Updaterc4

Digium ≫ Certified Asterisk Version1.8.0.0 Updaterc5

Digium ≫ Certified Asterisk Version1.8.1.0 Update-

Digium ≫ Certified Asterisk Version1.8.1.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.2.0 Update-

Digium ≫ Certified Asterisk Version1.8.2.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.3.0 Update-

Digium ≫ Certified Asterisk Version1.8.3.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.3.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.3.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.4.0 Update-

Digium ≫ Certified Asterisk Version1.8.4.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.4.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.4.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.5.0 Update-

Digium ≫ Certified Asterisk Version1.8.5.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.6.0 Update-

Digium ≫ Certified Asterisk Version1.8.6.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.6.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.6.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.7.0 Update-

Digium ≫ Certified Asterisk Version1.8.7.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.7.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.8.0 Update-

Digium ≫ Certified Asterisk Version1.8.8.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.8.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.8.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.8.0 Updaterc4

Digium ≫ Certified Asterisk Version1.8.8.0 Updaterc5

Digium ≫ Certified Asterisk Version1.8.9.0 Update-

Digium ≫ Certified Asterisk Version1.8.9.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.9.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.9.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.10.0 Update-

Digium ≫ Certified Asterisk Version1.8.10.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.10.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.10.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.10.0 Updaterc4

Digium ≫ Certified Asterisk Version1.8.11 Updatecert

Digium ≫ Certified Asterisk Version1.8.11 Updatecert1

Digium ≫ Certified Asterisk Version1.8.11 Updatecert10

Digium ≫ Certified Asterisk Version1.8.11 Updatecert2

Digium ≫ Certified Asterisk Version1.8.11 Updatecert3

Digium ≫ Certified Asterisk Version1.8.11 Updatecert4

Digium ≫ Certified Asterisk Version1.8.11 Updatecert5

Digium ≫ Certified Asterisk Version1.8.11 Updatecert6

Digium ≫ Certified Asterisk Version1.8.11 Updatecert7

Digium ≫ Certified Asterisk Version1.8.11 Updatecert8

Digium ≫ Certified Asterisk Version1.8.11 Updatecert9

Digium ≫ Certified Asterisk Version1.8.11.0 Update-

Digium ≫ Certified Asterisk Version1.8.11.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.11.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.11.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.12.0 Update-

Digium ≫ Certified Asterisk Version1.8.12.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.12.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.12.0 Updaterc3

Digium ≫ Certified Asterisk Version1.8.13.0 Update-

Digium ≫ Certified Asterisk Version1.8.13.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.13.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.14.0 Updaterc1

Digium ≫ Certified Asterisk Version1.8.14.0 Updaterc2

Digium ≫ Certified Asterisk Version1.8.15 Update-

Digium ≫ Certified Asterisk Version1.8.15 Updatecert1

Digium ≫ Certified Asterisk Version1.8.15 Updatecert1_rc1

Digium ≫ Certified Asterisk Version1.8.15 Updatecert1_rc2

Digium ≫ Certified Asterisk Version1.8.15 Updatecert1_rc3

Digium ≫ Certified Asterisk Version1.8.15 Updatecert2

Digium ≫ Certified Asterisk Version1.8.15 Updatecert3

Digium ≫ Certified Asterisk Version1.8.15 Updatecert4

Digium ≫ Certified Asterisk Version1.8.15 Updatecert5

Digium ≫ Certified Asterisk Version1.8.15 Updatecert6

Digium ≫ Certified Asterisk Version1.8.28 Updatecert1 SwEditionlts

Digium ≫ Certified Asterisk Version1.8.28 Updatecert2 SwEditionlts

Digium ≫ Certified Asterisk Version1.8.28 Updatecert3 SwEditionlts

Digium ≫ Certified Asterisk Version1.8.28 Updatecert4 SwEditionlts

Digium ≫ Certified Asterisk Version1.8.28.0 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert1

Digium ≫ Certified Asterisk Version11.6 Updatecert1 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert1_rc1

Digium ≫ Certified Asterisk Version11.6 Updatecert1_rc2

Digium ≫ Certified Asterisk Version11.6 Updatecert10 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert2

Digium ≫ Certified Asterisk Version11.6 Updatecert2 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert3

Digium ≫ Certified Asterisk Version11.6 Updatecert3 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert4 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert5 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert6 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert7 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert8 SwEditionlts

Digium ≫ Certified Asterisk Version11.6 Updatecert9 SwEditionlts

Digium ≫ Certified Asterisk Version11.6.0 SwEditionlts

Digium ≫ Certified Asterisk Version11.6.0 Update-

Digium ≫ Certified Asterisk Version11.6.0 Updaterc1

Digium ≫ Certified Asterisk Version11.6.0 Updaterc2

Digium ≫ Certified Asterisk Version13.1 Updatecert1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	39.03%	0.972

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

http://advisories.mageia.org/MGASA-2015-0153.html

http://downloads.asterisk.org/pub/security/AST-2015-003.html

Vendor Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2015-July/162260.html

http://packetstormsecurity.com/files/131364/Asterisk-Project-Security-Advisory-AST-2015-003.html

http://seclists.org/fulldisclosure/2015/Apr/22

http://www.debian.org/security/2016/dsa-3700

http://www.mandriva.com/security/advisories?name=MDVSA-2015:206

http://www.securityfocus.com/archive/1/535222/100/0/threaded

http://www.securityfocus.com/bid/74022

http://www.securitytracker.com/id/1032052

https://nvd.nist.gov/vuln/detail/CVE-2015-3008

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-3008

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-3008

EUVD