CVE-2023-37457

Source
https://cve.org/CVERecord?id=CVE-2023-37457
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-37457.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-37457
Aliases
  • GHSA-98rc-4j27-74hh
Downstream
Published
2023-12-14T19:43:30.945Z
Modified
2026-07-08T05:54:17.745484891Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Asterisk's PJSIP_HEADER dialplan function can overwrite memory/cause crash when using 'update'
Details

Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; as well as ceritifed-asterisk 18.9-cert5 and prior, the 'update' functionality of the PJSIP_HEADER dialplan function can exceed the available buffer space for storing the new value of a header. By doing so this can overwrite memory or cause a crash. This is not externally exploitable, unless dialplan is explicitly written to update a header based on data from an outside source. If the 'update' functionality is not used the vulnerability does not occur. A patch is available at commit a1ca0268254374b515fa5992f01340f7717113fa.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/37xxx/CVE-2023-37457.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-120"
    ]
}
References

Affected packages

Git / github.com/asterisk/asterisk

Affected ranges

Type
GIT
Repo
https://github.com/asterisk/asterisk
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Introduced
Introduced
Fixed
Database specific
{
    "cpe": [
        "cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:digium:asterisk:21.0.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:13.13.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:13.13.0:rc1:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:13.13.0:rc2:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:16.8.0:-:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:18.9:cert1:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:18.9:cert2:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:18.9:cert3:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:18.9:cert4:*:*:*:*:*:*",
        "cpe:2.3:a:sangoma:certified_asterisk:18.9:cert5:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "18.20.0"
        },
        {
            "introduced": "19.0.0"
        },
        {
            "last_affected": "20.5.0"
        },
        {
            "introduced": "21.0.0"
        },
        {
            "last_affected": "21.0.0"
        },
        {
            "introduced": "13.13.0"
        },
        {
            "last_affected": "13.13.0"
        },
        {
            "introduced": "13.13.0-rc1"
        },
        {
            "last_affected": "13.13.0-rc1"
        },
        {
            "introduced": "13.13.0-rc2"
        },
        {
            "last_affected": "13.13.0-rc2"
        },
        {
            "introduced": "16.8.0-NA"
        },
        {
            "last_affected": "16.8.0-NA"
        },
        {
            "introduced": "18.9-cert1"
        },
        {
            "last_affected": "18.9-cert1"
        },
        {
            "introduced": "18.9-cert2"
        },
        {
            "last_affected": "18.9-cert2"
        },
        {
            "introduced": "18.9-cert3"
        },
        {
            "last_affected": "18.9-cert3"
        },
        {
            "introduced": "18.9-cert4"
        },
        {
            "last_affected": "18.9-cert4"
        },
        {
            "introduced": "18.9-cert5"
        },
        {
            "last_affected": "18.9-cert5"
        }
    ],
    "source": [
        "CPE_RANGE",
        "CPE_STRING",
        "REFERENCES"
    ]
}

Affected versions

13.*
13.13.0
13.13.0-rc1
13.13.0-rc2
16.*
16.8.0-NA
18.*
18.9-cert1
18.9-cert2
18.9-cert3
18.9-cert4
18.9-cert5
21.*
21.0.0
= 21.*
= 21.0.0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-37457.json"