CVE-2019-18790

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-18790
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-18790.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-18790
Downstream
Published
2019-11-22T17:15:11.740Z
Modified
2026-03-14T14:41:02.972191Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

An issue was discovered in channels/chansip.c in Sangoma Asterisk 13.x before 13.29.2, 16.x before 16.6.2, and 17.x before 17.0.1, and Certified Asterisk 13.21 before cert5. A SIP request can be sent to Asterisk that can change a SIP peer's IP address. A REGISTER does not need to occur, and calls can be hijacked as a result. The only thing that needs to be known is the peer's name; authentication details such as passwords do not need to be known. This vulnerability is only exploitable when the nat option is set to the default, or autoforce_rport.

References

Affected packages

Git / github.com/asterisk/asterisk

Affected ranges

Type
GIT
Repo
https://github.com/asterisk/asterisk
Events
Introduced
85335355efb2d7914a1fe20ed31afcef15fd210c
Fixed
1863c35fc3f888d726e54e8674ec78a7cd099e34
Introduced
a65908f83e2f17a3aca7eb39c8e06045aca02674
Fixed
ac87f47b32bd83e2a6a657ac61f16a9a302a0fba
Introduced
5ffe12b6ef30cd503f85d75745fd8d9c2cfafe47
Fixed
fc13cc2f5999b3ccec15b04da1e7a33f9566d18a
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
f71a36701674cf50c47d91c403e824b9cc4868a7
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
32f362c8962addbda98d5dc679a644b654ad486b
Database specific 
{
    "versions": [
        {
            "introduced": "13.0.0"
        },
        {
            "fixed": "13.29.2"
        },
        {
            "introduced": "16.0.0"
        },
        {
            "fixed": "16.6.2"
        },
        {
            "introduced": "17.0.0"
        },
        {
            "fixed": "17.0.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "13.21.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "13.21.0-rc1"
        }
    ]
}

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-18790.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "13.21.0-cert1"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "13.21.0-cert2"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "13.21.0-cert3"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "13.21.0-cert4"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "9.0"
            }
        ]
    }
]