CVE-2021-41145

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-41145

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-41145.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-41145

Aliases

GHSA-jvpq-23v4-gp3m

Published

2021-10-25T22:15:07Z

Modified

2024-12-05T15:32:21.418284Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. FreeSWITCH prior to version 1.10.7 is susceptible to Denial of Service via SIP flooding. When flooding FreeSWITCH with SIP messages, it was observed that after a number of seconds the process was killed by the operating system due to memory exhaustion. By abusing this vulnerability, an attacker is able to crash any FreeSWITCH instance by flooding it with SIP messages, leading to Denial of Service. The attack does not require authentication and can be carried out over UDP, TCP or TLS. This issue was patched in version 1.10.7.

References

Affected packages

Alpine:v3.15 / freeswitch

Package

Name: freeswitch
Purl: pkg:apk/alpine/freeswitch?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.7-r0

Affected versions

1.*

1.0.3-r0

1.0.3-r1

1.0.4-r0

1.0.4-r1

1.0.4-r2

1.0.4-r3

1.0.6-r0

1.0.6-r1

1.0.6-r2

1.0.6-r3

1.0.6-r4

1.0.6-r5

1.0.6-r6

1.0.6-r7

1.0.6-r8

1.0.6-r9

1.0.6-r10

1.0.6-r11

1.0.6-r12

1.0.6-r13

1.0.6-r14

1.0.6-r15

1.0.6-r16

1.0.6-r17

1.0.7-r0

1.0.7-r1

1.0.7-r2

1.0.7_p20110323-r0

1.0.7_p20110323-r1

1.0.7_p20110527-r0

1.0.7_p20110602-r0

1.0.7_p20110602-r1

1.0.7_p20110602-r2

1.0.7_p20110602-r3

1.0.7_p20110602-r4

1.0.7_p20110602-r5

1.0.7_p20110602-r6

1.0.7_p20110602-r7

1.0.7_p20120309-r1

1.2.0-r0

1.2.0-r1

1.2.0-r2

1.2.0-r3

1.2.5.3-r0

1.2.5.3-r1

1.2.5.3-r2

1.2.5.3-r3

1.2.10-r0

1.4.0-r0

1.4.0-r1

1.4.0-r2

1.4.6-r0

1.4.6-r1

1.4.7-r0

1.4.7-r1

1.4.13-r0

1.4.18-r0

1.4.18-r1

1.4.18-r2

1.4.18-r3

1.4.18-r4

1.4.18-r5

1.4.18-r6

1.4.19-r0

1.4.19-r1

1.4.19-r2

1.4.20-r0

1.4.20-r1

1.4.20-r2

1.4.20-r3

1.4.20-r4

1.4.20-r5

1.6.2-r0

1.6.2-r1

1.6.2-r2

1.6.2-r3

1.6.2-r4

1.6.2-r5

1.6.6-r0

1.6.6-r1

1.6.6-r2

1.6.7-r0

1.6.7-r1

1.6.7-r2

1.6.9-r0

1.6.11-r0

1.6.13-r0

1.6.15-r0

1.6.17-r0

1.6.19-r0

1.6.19-r1

1.6.20-r0

1.8.2-r0

1.8.2-r1

1.8.5-r0

1.8.5-r1

1.8.7-r0

1.8.7-r1

1.10.2-r0

1.10.2-r1

1.10.3-r0

1.10.3-r1

1.10.3-r2

1.10.3-r3

1.10.5-r0

1.10.5-r1

1.10.5-r2

1.10.6-r0

1.10.6-r1

1.10.6-r2

Alpine:v3.16 / freeswitch

Package

Name: freeswitch
Purl: pkg:apk/alpine/freeswitch?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.7-r0

Affected versions

1.*

1.0.3-r0

1.0.3-r1

1.0.4-r0

1.0.4-r1

1.0.4-r2

1.0.4-r3

1.0.6-r0

1.0.6-r1

1.0.6-r2

1.0.6-r3

1.0.6-r4

1.0.6-r5

1.0.6-r6

1.0.6-r7

1.0.6-r8

1.0.6-r9

1.0.6-r10

1.0.6-r11

1.0.6-r12

1.0.6-r13

1.0.6-r14

1.0.6-r15

1.0.6-r16

1.0.6-r17

1.0.7-r0

1.0.7-r1

1.0.7-r2

1.0.7_p20110323-r0

1.0.7_p20110323-r1

1.0.7_p20110527-r0

1.0.7_p20110602-r0

1.0.7_p20110602-r1

1.0.7_p20110602-r2

1.0.7_p20110602-r3

1.0.7_p20110602-r4

1.0.7_p20110602-r5

1.0.7_p20110602-r6

1.0.7_p20110602-r7

1.0.7_p20120309-r1

1.2.0-r0

1.2.0-r1

1.2.0-r2

1.2.0-r3

1.2.5.3-r0

1.2.5.3-r1

1.2.5.3-r2

1.2.5.3-r3

1.2.10-r0

1.4.0-r0

1.4.0-r1

1.4.0-r2

1.4.6-r0

1.4.6-r1

1.4.7-r0

1.4.7-r1

1.4.13-r0

1.4.18-r0

1.4.18-r1

1.4.18-r2

1.4.18-r3

1.4.18-r4

1.4.18-r5

1.4.18-r6

1.4.19-r0

1.4.19-r1

1.4.19-r2

1.4.20-r0

1.4.20-r1

1.4.20-r2

1.4.20-r3

1.4.20-r4

1.4.20-r5

1.6.2-r0

1.6.2-r1

1.6.2-r2

1.6.2-r3

1.6.2-r4

1.6.2-r5

1.6.6-r0

1.6.6-r1

1.6.6-r2

1.6.7-r0

1.6.7-r1

1.6.7-r2

1.6.9-r0

1.6.11-r0

1.6.13-r0

1.6.15-r0

1.6.17-r0

1.6.19-r0

1.6.19-r1

1.6.20-r0

1.8.2-r0

1.8.2-r1

1.8.5-r0

1.8.5-r1

1.8.7-r0

1.8.7-r1

1.10.2-r0

1.10.2-r1

1.10.3-r0

1.10.3-r1

1.10.3-r2

1.10.3-r3

1.10.5-r0

1.10.5-r1

1.10.5-r2

1.10.6-r0

1.10.6-r1

1.10.6-r2

Alpine:v3.17 / freeswitch

Package

Name: freeswitch
Purl: pkg:apk/alpine/freeswitch?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.7-r0

Affected versions

1.*

1.0.3-r0

1.0.3-r1

1.0.4-r0

1.0.4-r1

1.0.4-r2

1.0.4-r3

1.0.6-r0

1.0.6-r1

1.0.6-r2

1.0.6-r3

1.0.6-r4

1.0.6-r5

1.0.6-r6

1.0.6-r7

1.0.6-r8

1.0.6-r9

1.0.6-r10

1.0.6-r11

1.0.6-r12

1.0.6-r13

1.0.6-r14

1.0.6-r15

1.0.6-r16

1.0.6-r17

1.0.7-r0

1.0.7-r1

1.0.7-r2

1.0.7_p20110323-r0

1.0.7_p20110323-r1

1.0.7_p20110527-r0

1.0.7_p20110602-r0

1.0.7_p20110602-r1

1.0.7_p20110602-r2

1.0.7_p20110602-r3

1.0.7_p20110602-r4

1.0.7_p20110602-r5

1.0.7_p20110602-r6

1.0.7_p20110602-r7

1.0.7_p20120309-r1

1.2.0-r0

1.2.0-r1

1.2.0-r2

1.2.0-r3

1.2.5.3-r0

1.2.5.3-r1

1.2.5.3-r2

1.2.5.3-r3

1.2.10-r0

1.4.0-r0

1.4.0-r1

1.4.0-r2

1.4.6-r0

1.4.6-r1

1.4.7-r0

1.4.7-r1

1.4.13-r0

1.4.18-r0

1.4.18-r1

1.4.18-r2

1.4.18-r3

1.4.18-r4

1.4.18-r5

1.4.18-r6

1.4.19-r0

1.4.19-r1

1.4.19-r2

1.4.20-r0

1.4.20-r1

1.4.20-r2

1.4.20-r3

1.4.20-r4

1.4.20-r5

1.6.2-r0

1.6.2-r1

1.6.2-r2

1.6.2-r3

1.6.2-r4

1.6.2-r5

1.6.6-r0

1.6.6-r1

1.6.6-r2

1.6.7-r0

1.6.7-r1

1.6.7-r2

1.6.9-r0

1.6.11-r0

1.6.13-r0

1.6.15-r0

1.6.17-r0

1.6.19-r0

1.6.19-r1

1.6.20-r0

1.8.2-r0

1.8.2-r1

1.8.5-r0

1.8.5-r1

1.8.7-r0

1.8.7-r1

1.10.2-r0

1.10.2-r1

1.10.3-r0

1.10.3-r1

1.10.3-r2

1.10.3-r3

1.10.5-r0

1.10.5-r1

1.10.5-r2

1.10.6-r0

1.10.6-r1

1.10.6-r2

Alpine:v3.18 / freeswitch

Package

Name: freeswitch
Purl: pkg:apk/alpine/freeswitch?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.7-r0

Affected versions

1.*

1.0.3-r0

1.0.3-r1

1.0.4-r0

1.0.4-r1

1.0.4-r2

1.0.4-r3

1.0.6-r0

1.0.6-r1

1.0.6-r2

1.0.6-r3

1.0.6-r4

1.0.6-r5

1.0.6-r6

1.0.6-r7

1.0.6-r8

1.0.6-r9

1.0.6-r10

1.0.6-r11

1.0.6-r12

1.0.6-r13

1.0.6-r14

1.0.6-r15

1.0.6-r16

1.0.6-r17

1.0.7-r0

1.0.7-r1

1.0.7-r2

1.0.7_p20110323-r0

1.0.7_p20110323-r1

1.0.7_p20110527-r0

1.0.7_p20110602-r0

1.0.7_p20110602-r1

1.0.7_p20110602-r2

1.0.7_p20110602-r3

1.0.7_p20110602-r4

1.0.7_p20110602-r5

1.0.7_p20110602-r6

1.0.7_p20110602-r7

1.0.7_p20120309-r1

1.2.0-r0

1.2.0-r1

1.2.0-r2

1.2.0-r3

1.2.5.3-r0

1.2.5.3-r1

1.2.5.3-r2

1.2.5.3-r3

1.2.10-r0

1.4.0-r0

1.4.0-r1

1.4.0-r2

1.4.6-r0

1.4.6-r1

1.4.7-r0

1.4.7-r1

1.4.13-r0

1.4.18-r0

1.4.18-r1

1.4.18-r2

1.4.18-r3

1.4.18-r4

1.4.18-r5

1.4.18-r6

1.4.19-r0

1.4.19-r1

1.4.19-r2

1.4.20-r0

1.4.20-r1

1.4.20-r2

1.4.20-r3

1.4.20-r4

1.4.20-r5

1.6.2-r0

1.6.2-r1

1.6.2-r2

1.6.2-r3

1.6.2-r4

1.6.2-r5

1.6.6-r0

1.6.6-r1

1.6.6-r2

1.6.7-r0

1.6.7-r1

1.6.7-r2

1.6.9-r0

1.6.11-r0

1.6.13-r0

1.6.15-r0

1.6.17-r0

1.6.19-r0

1.6.19-r1

1.6.20-r0

1.8.2-r0

1.8.2-r1

1.8.5-r0

1.8.5-r1

1.8.7-r0

1.8.7-r1

1.10.2-r0

1.10.2-r1

1.10.3-r0

1.10.3-r1

1.10.3-r2

1.10.3-r3

1.10.5-r0

1.10.5-r1

1.10.5-r2

1.10.6-r0

1.10.6-r1

1.10.6-r2

Alpine:v3.19 / freeswitch

Package

Name: freeswitch
Purl: pkg:apk/alpine/freeswitch?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.7-r0

Affected versions

1.*

1.0.3-r0

1.0.3-r1

1.0.4-r0

1.0.4-r1

1.0.4-r2

1.0.4-r3

1.0.6-r0

1.0.6-r1

1.0.6-r2

1.0.6-r3

1.0.6-r4

1.0.6-r5

1.0.6-r6

1.0.6-r7

1.0.6-r8

1.0.6-r9

1.0.6-r10

1.0.6-r11

1.0.6-r12

1.0.6-r13

1.0.6-r14

1.0.6-r15

1.0.6-r16

1.0.6-r17

1.0.7-r0

1.0.7-r1

1.0.7-r2

1.0.7_p20110323-r0

1.0.7_p20110323-r1

1.0.7_p20110527-r0

1.0.7_p20110602-r0

1.0.7_p20110602-r1

1.0.7_p20110602-r2

1.0.7_p20110602-r3

1.0.7_p20110602-r4

1.0.7_p20110602-r5

1.0.7_p20110602-r6

1.0.7_p20110602-r7

1.0.7_p20120309-r1

1.2.0-r0

1.2.0-r1

1.2.0-r2

1.2.0-r3

1.2.5.3-r0

1.2.5.3-r1

1.2.5.3-r2

1.2.5.3-r3

1.2.10-r0

1.4.0-r0

1.4.0-r1

1.4.0-r2

1.4.6-r0

1.4.6-r1

1.4.7-r0

1.4.7-r1

1.4.13-r0

1.4.18-r0

1.4.18-r1

1.4.18-r2

1.4.18-r3

1.4.18-r4

1.4.18-r5

1.4.18-r6

1.4.19-r0

1.4.19-r1

1.4.19-r2

1.4.20-r0

1.4.20-r1

1.4.20-r2

1.4.20-r3

1.4.20-r4

1.4.20-r5

1.6.2-r0

1.6.2-r1

1.6.2-r2

1.6.2-r3

1.6.2-r4

1.6.2-r5

1.6.6-r0

1.6.6-r1

1.6.6-r2

1.6.7-r0

1.6.7-r1

1.6.7-r2

1.6.9-r0

1.6.11-r0

1.6.13-r0

1.6.15-r0

1.6.17-r0

1.6.19-r0

1.6.19-r1

1.6.20-r0

1.8.2-r0

1.8.2-r1

1.8.5-r0

1.8.5-r1

1.8.7-r0

1.8.7-r1

1.10.2-r0

1.10.2-r1

1.10.3-r0

1.10.3-r1

1.10.3-r2

1.10.3-r3

1.10.5-r0

1.10.5-r1

1.10.5-r2

1.10.6-r0

1.10.6-r1

1.10.6-r2

Alpine:v3.20 / freeswitch

Package

Name: freeswitch
Purl: pkg:apk/alpine/freeswitch?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.7-r0

Affected versions

1.*

1.0.3-r0

1.0.3-r1

1.0.4-r0

1.0.4-r1

1.0.4-r2

1.0.4-r3

1.0.6-r0

1.0.6-r1

1.0.6-r2

1.0.6-r3

1.0.6-r4

1.0.6-r5

1.0.6-r6

1.0.6-r7

1.0.6-r8

1.0.6-r9

1.0.6-r10

1.0.6-r11

1.0.6-r12

1.0.6-r13

1.0.6-r14

1.0.6-r15

1.0.6-r16

1.0.6-r17

1.0.7-r0

1.0.7-r1

1.0.7-r2

1.0.7_p20110323-r0

1.0.7_p20110323-r1

1.0.7_p20110527-r0

1.0.7_p20110602-r0

1.0.7_p20110602-r1

1.0.7_p20110602-r2

1.0.7_p20110602-r3

1.0.7_p20110602-r4

1.0.7_p20110602-r5

1.0.7_p20110602-r6

1.0.7_p20110602-r7

1.0.7_p20120309-r1

1.2.0-r0

1.2.0-r1

1.2.0-r2

1.2.0-r3

1.2.5.3-r0

1.2.5.3-r1

1.2.5.3-r2

1.2.5.3-r3

1.2.10-r0

1.4.0-r0

1.4.0-r1

1.4.0-r2

1.4.6-r0

1.4.6-r1

1.4.7-r0

1.4.7-r1

1.4.13-r0

1.4.18-r0

1.4.18-r1

1.4.18-r2

1.4.18-r3

1.4.18-r4

1.4.18-r5

1.4.18-r6

1.4.19-r0

1.4.19-r1

1.4.19-r2

1.4.20-r0

1.4.20-r1

1.4.20-r2

1.4.20-r3

1.4.20-r4

1.4.20-r5

1.6.2-r0

1.6.2-r1

1.6.2-r2

1.6.2-r3

1.6.2-r4

1.6.2-r5

1.6.6-r0

1.6.6-r1

1.6.6-r2

1.6.7-r0

1.6.7-r1

1.6.7-r2

1.6.9-r0

1.6.11-r0

1.6.13-r0

1.6.15-r0

1.6.17-r0

1.6.19-r0

1.6.19-r1

1.6.20-r0

1.8.2-r0

1.8.2-r1

1.8.5-r0

1.8.5-r1

1.8.7-r0

1.8.7-r1

1.10.2-r0

1.10.2-r1

1.10.3-r0

1.10.3-r1

1.10.3-r2

1.10.3-r3

1.10.5-r0

1.10.5-r1

1.10.5-r2

1.10.6-r0

1.10.6-r1

1.10.6-r2

Alpine:v3.21 / freeswitch

Package

Name: freeswitch
Purl: pkg:apk/alpine/freeswitch?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.7-r0

Affected versions

1.*

1.0.3-r0

1.0.3-r1

1.0.4-r0

1.0.4-r1

1.0.4-r2

1.0.4-r3

1.0.6-r0

1.0.6-r1

1.0.6-r2

1.0.6-r3

1.0.6-r4

1.0.6-r5

1.0.6-r6

1.0.6-r7

1.0.6-r8

1.0.6-r9

1.0.6-r10

1.0.6-r11

1.0.6-r12

1.0.6-r13

1.0.6-r14

1.0.6-r15

1.0.6-r16

1.0.6-r17

1.0.7-r0

1.0.7-r1

1.0.7-r2

1.0.7_p20110323-r0

1.0.7_p20110323-r1

1.0.7_p20110527-r0

1.0.7_p20110602-r0

1.0.7_p20110602-r1

1.0.7_p20110602-r2

1.0.7_p20110602-r3

1.0.7_p20110602-r4

1.0.7_p20110602-r5

1.0.7_p20110602-r6

1.0.7_p20110602-r7

1.0.7_p20120309-r1

1.2.0-r0

1.2.0-r1

1.2.0-r2

1.2.0-r3

1.2.5.3-r0

1.2.5.3-r1

1.2.5.3-r2

1.2.5.3-r3

1.2.10-r0

1.4.0-r0

1.4.0-r1

1.4.0-r2

1.4.6-r0

1.4.6-r1

1.4.7-r0

1.4.7-r1

1.4.13-r0

1.4.18-r0

1.4.18-r1

1.4.18-r2

1.4.18-r3

1.4.18-r4

1.4.18-r5

1.4.18-r6

1.4.19-r0

1.4.19-r1

1.4.19-r2

1.4.20-r0

1.4.20-r1

1.4.20-r2

1.4.20-r3

1.4.20-r4

1.4.20-r5

1.6.2-r0

1.6.2-r1

1.6.2-r2

1.6.2-r3

1.6.2-r4

1.6.2-r5

1.6.6-r0

1.6.6-r1

1.6.6-r2

1.6.7-r0

1.6.7-r1

1.6.7-r2

1.6.9-r0

1.6.11-r0

1.6.13-r0

1.6.15-r0

1.6.17-r0

1.6.19-r0

1.6.19-r1

1.6.20-r0

1.8.2-r0

1.8.2-r1

1.8.5-r0

1.8.5-r1

1.8.7-r0

1.8.7-r1

1.10.2-r0

1.10.2-r1

1.10.3-r0

1.10.3-r1

1.10.3-r2

1.10.3-r3

1.10.5-r0

1.10.5-r1

1.10.5-r2

1.10.6-r0

1.10.6-r1

1.10.6-r2