CVE-2014-8413

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2014-8413

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2014-8413.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2014-8413

Downstream

DEBIAN-CVE-2014-8413

Published

2014-11-24T15:59:05Z

Modified

2026-04-10T03:44:06.166927Z

Summary

[none]

Details

The respjsipacl module in Asterisk Open Source 12.x before 12.7.1 and 13.x before 13.0.1 does not properly create and load ACLs defined in pjsip.conf at startup, which allows remote attackers to bypass intended PJSIP ACL rules.

References

http://downloads.asterisk.org/pub/security/AST-2014-013.html

CVE-2014-8413

Affected packages