CVE-2024-42365

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-42365
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-42365.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-42365
Aliases
  • GHSA-c4cg-9275-6w44
Downstream
Published
2024-08-08T16:29:07.436Z
Modified
2026-03-03T02:56:58.154451Z
Severity
  • 7.4 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L CVSS Calculator
Summary
Asterisk allows `Write=originate` as sufficient permissions for code execution / `System()` dialplan
Details

Asterisk is an open source private branch exchange (PBX) and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an AMI user with write=originate may change all configuration files in the /etc/asterisk/ directory. This occurs because they are able to curl remote files and write them to disk, but are also able to append to existing files using the FILE function inside the SET application. This issue may result in privilege escalation, remote code execution and/or blind server-side request forgery with arbitrary protocol. Asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2 contain a fix for this issue.

Database specific 
{
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-1220",
        "CWE-267"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/42xxx/CVE-2024-42365.json"
}
References

Affected packages

Git / github.com/asterisk/asterisk

Affected ranges

Type
GIT
Repo
https://github.com/asterisk/asterisk
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
42a2f4ccfa2c7062a15063e765916b3332e34cc4
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
7a0090325bfa9d778a39ae5f7d0a98109e4651c8
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
b4063bf756272254b160b6d1bd6e9a3f8e16cc71
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
bbe68db10ab8a80c29db383e4dfe14f6eafaf993
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
faddd99f2b9408b524e5eb8a01589fe1fa282df2
Introduced
de4f63b4824c91a0cd9f3d95f3b7923bec71960c
Fixed
d0d75f61fe4001a10dfac2f2687341f116a10bd0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-42365.json"
vanir_signatures 
[
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c"
        },
        "source": "https://github.com/asterisk/asterisk/commit/faddd99f2b9408b524e5eb8a01589fe1fa282df2",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "330083386143230897860645627042872122397",
                "135458073016617245683244807501187529424",
                "60033089452914022413512870798842650543",
                "316824714912647114610842803631927843330",
                "274807132997725124570029074467748754423",
                "295927908401415594913179399400800381275",
                "247155707204245380668433602252893744860",
                "144401246708952014752911080933458126352",
                "103597149692434822907490553740580318234",
                "43733839804770866268421438718883615057",
                "174688976415292125217161812871754725646",
                "272116292709699004460503924397067593483",
                "2776275004956605641158109646656848331",
                "187524471302074971220675724334739476446",
                "101928226929111395888281062233454403917",
                "138985238550026917485626545431846360826",
                "260379234745971463118281333239484257831",
                "306713559133014621805675062700540987106",
                "44505279969845405466588382943414654232",
                "12844842932451369550652892076403609271",
                "100835194887530738481442659800828727660"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-42365-1534683e",
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c",
            "function": "action_originate"
        },
        "source": "https://github.com/asterisk/asterisk/commit/42a2f4ccfa2c7062a15063e765916b3332e34cc4",
        "deprecated": false,
        "digest": {
            "function_hash": "232703403506518374731596977575200181777",
            "length": 5343.0
        },
        "id": "CVE-2024-42365-41137e8e",
        "signature_type": "Function"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c",
            "function": "action_originate"
        },
        "source": "https://github.com/asterisk/asterisk/commit/b4063bf756272254b160b6d1bd6e9a3f8e16cc71",
        "deprecated": false,
        "digest": {
            "function_hash": "23455742690250586586237669831117773691",
            "length": 5407.0
        },
        "id": "CVE-2024-42365-460eda08",
        "signature_type": "Function"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c"
        },
        "source": "https://github.com/asterisk/asterisk/commit/7a0090325bfa9d778a39ae5f7d0a98109e4651c8",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "330083386143230897860645627042872122397",
                "135458073016617245683244807501187529424",
                "60033089452914022413512870798842650543",
                "316824714912647114610842803631927843330",
                "274807132997725124570029074467748754423",
                "295927908401415594913179399400800381275",
                "247155707204245380668433602252893744860",
                "144401246708952014752911080933458126352",
                "103597149692434822907490553740580318234",
                "43733839804770866268421438718883615057",
                "174688976415292125217161812871754725646",
                "272116292709699004460503924397067593483",
                "2776275004956605641158109646656848331",
                "187524471302074971220675724334739476446",
                "101928226929111395888281062233454403917",
                "138985238550026917485626545431846360826",
                "260379234745971463118281333239484257831",
                "306713559133014621805675062700540987106",
                "44505279969845405466588382943414654232",
                "12844842932451369550652892076403609271",
                "100835194887530738481442659800828727660"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-42365-5803e02b",
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c"
        },
        "source": "https://github.com/asterisk/asterisk/commit/b4063bf756272254b160b6d1bd6e9a3f8e16cc71",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "330083386143230897860645627042872122397",
                "135458073016617245683244807501187529424",
                "60033089452914022413512870798842650543",
                "316824714912647114610842803631927843330",
                "274807132997725124570029074467748754423",
                "295927908401415594913179399400800381275",
                "247155707204245380668433602252893744860",
                "144401246708952014752911080933458126352",
                "103597149692434822907490553740580318234",
                "43733839804770866268421438718883615057",
                "174688976415292125217161812871754725646",
                "272116292709699004460503924397067593483",
                "2776275004956605641158109646656848331",
                "187524471302074971220675724334739476446",
                "101928226929111395888281062233454403917",
                "138985238550026917485626545431846360826",
                "260379234745971463118281333239484257831",
                "306713559133014621805675062700540987106",
                "44505279969845405466588382943414654232",
                "12844842932451369550652892076403609271",
                "100835194887530738481442659800828727660"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-42365-739da863",
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c"
        },
        "source": "https://github.com/asterisk/asterisk/commit/bbe68db10ab8a80c29db383e4dfe14f6eafaf993",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "330083386143230897860645627042872122397",
                "135458073016617245683244807501187529424",
                "60033089452914022413512870798842650543",
                "316824714912647114610842803631927843330",
                "274807132997725124570029074467748754423",
                "295927908401415594913179399400800381275",
                "247155707204245380668433602252893744860",
                "144401246708952014752911080933458126352",
                "103597149692434822907490553740580318234",
                "43733839804770866268421438718883615057",
                "174688976415292125217161812871754725646",
                "272116292709699004460503924397067593483",
                "2776275004956605641158109646656848331",
                "187524471302074971220675724334739476446",
                "101928226929111395888281062233454403917",
                "138985238550026917485626545431846360826",
                "260379234745971463118281333239484257831",
                "306713559133014621805675062700540987106",
                "44505279969845405466588382943414654232",
                "12844842932451369550652892076403609271",
                "100835194887530738481442659800828727660"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-42365-77e90d27",
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c"
        },
        "source": "https://github.com/asterisk/asterisk/commit/42a2f4ccfa2c7062a15063e765916b3332e34cc4",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "330083386143230897860645627042872122397",
                "135458073016617245683244807501187529424",
                "60033089452914022413512870798842650543",
                "316824714912647114610842803631927843330",
                "274807132997725124570029074467748754423",
                "295927908401415594913179399400800381275",
                "247155707204245380668433602252893744860",
                "144401246708952014752911080933458126352",
                "103597149692434822907490553740580318234",
                "43733839804770866268421438718883615057",
                "174688976415292125217161812871754725646",
                "272116292709699004460503924397067593483",
                "2776275004956605641158109646656848331",
                "187524471302074971220675724334739476446",
                "101928226929111395888281062233454403917",
                "138985238550026917485626545431846360826",
                "260379234745971463118281333239484257831",
                "306713559133014621805675062700540987106",
                "44505279969845405466588382943414654232",
                "12844842932451369550652892076403609271",
                "100835194887530738481442659800828727660"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2024-42365-7e6e8c38",
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c",
            "function": "action_originate"
        },
        "source": "https://github.com/asterisk/asterisk/commit/faddd99f2b9408b524e5eb8a01589fe1fa282df2",
        "deprecated": false,
        "digest": {
            "function_hash": "23455742690250586586237669831117773691",
            "length": 5407.0
        },
        "id": "CVE-2024-42365-af28066f",
        "signature_type": "Function"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c",
            "function": "action_originate"
        },
        "source": "https://github.com/asterisk/asterisk/commit/7a0090325bfa9d778a39ae5f7d0a98109e4651c8",
        "deprecated": false,
        "digest": {
            "function_hash": "252776182087257656298008582200932970026",
            "length": 5366.0
        },
        "id": "CVE-2024-42365-bff90075",
        "signature_type": "Function"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "main/manager.c",
            "function": "action_originate"
        },
        "source": "https://github.com/asterisk/asterisk/commit/bbe68db10ab8a80c29db383e4dfe14f6eafaf993",
        "deprecated": false,
        "digest": {
            "function_hash": "23455742690250586586237669831117773691",
            "length": 5407.0
        },
        "id": "CVE-2024-42365-eb29ef81",
        "signature_type": "Function"
    }
]