CVE-2023-49786
Asterisk susceptible to Denial of Service via DTLS Hello packets during call initiation
Severity Score
5.9
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
5
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1; as well as certified-asterisk prior to 18.9-cert6; Asterisk is susceptible to a DoS due to a race condition in the hello handshake phase of the DTLS protocol when handling DTLS-SRTP for media setup. This attack can be done continuously, thus denying new DTLS-SRTP encrypted calls during the attack. Abuse of this vulnerability may lead to a massive Denial of Service on vulnerable Asterisk servers for calls that rely on DTLS-SRTP. Commit d7d7764cb07c8a1872804321302ef93bf62cba05 contains a fix, which is part of versions 18.20.1, 20.5.1, 21.0.1, amd 18.9-cert6.
Asterisk es un conjunto de herramientas de telefonía y centralita privada de código abierto. En Asterisk anteriores a las versiones 18.20.1, 20.5.1 y 21.0.1; así como certificado-asterisco anterior a 18.9-cert6; Asterisk es susceptible a un DoS debido a una condición de ejecución en la fase "hello handshake" del protocolo DTLS cuando maneja DTLS-SRTP para la configuración de medios. Este ataque se puede realizar de forma continua, negando así nuevas llamadas cifradas DTLS-SRTP durante el ataque. El abuso de esta vulnerabilidad puede provocar una denegación de servicio masiva en servidores Asterisk vulnerables para llamadas que dependen de DTLS-SRTP. El commit d7d7764cb07c8a1872804321302ef93bf62cba05 contiene una solución, que forma parte de las versiones 18.20.1, 20.5.1, 21.0.1, amd 18.9-cert6.
When handling DTLS-SRTP for media setup, Asterisk version 20.1.0 is susceptible to denial of service due to a race condition in the hello handshake phase of the DTLS protocol. This attack can be done continuously, thus denying new DTLS-SRTP encrypted calls during the attack.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-11-30 CVE Reserved
- 2023-12-14 CVE Published
- 2024-10-08 CVE Updated
- 2024-10-08 First Exploit
- 2024-11-13 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
- CWE-703: Improper Check or Handling of Exceptional Conditions
CAPEC
References (7)
| URL | Date | SRC |
|---|---|---|
| https://github.com/asterisk/asterisk/commit/d7d7764cb07c8a1872804321302ef93bf62cba05 | 2023-12-29 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Digium Search vendor "Digium" | Asterisk Search vendor "Digium" for product "Asterisk" | < 18.20.1 Search vendor "Digium" for product "Asterisk" and version " < 18.20.1" | - |
Affected
| ||||||
| Digium Search vendor "Digium" | Asterisk Search vendor "Digium" for product "Asterisk" | >= 19.0.0 < 20.5.1 Search vendor "Digium" for product "Asterisk" and version " >= 19.0.0 < 20.5.1" | - |
Affected
| ||||||
| Digium Search vendor "Digium" | Asterisk Search vendor "Digium" for product "Asterisk" | 21.0.0 Search vendor "Digium" for product "Asterisk" and version "21.0.0" | - |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | - |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | cert1 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | cert1-rc1 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | cert1-rc2 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | cert1-rc3 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | cert1-rc4 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | cert2 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | cert3 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | rc1 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 13.13.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "13.13.0" | rc2 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | - |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert1 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert10 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert11 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert12 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert2 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert3 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert4 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert5 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert6 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert7 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert8 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 16.8.0 Search vendor "Sangoma" for product "Certified Asterisk" and version "16.8.0" | cert9 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 18.9 Search vendor "Sangoma" for product "Certified Asterisk" and version "18.9" | cert1 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 18.9 Search vendor "Sangoma" for product "Certified Asterisk" and version "18.9" | cert2 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 18.9 Search vendor "Sangoma" for product "Certified Asterisk" and version "18.9" | cert3 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 18.9 Search vendor "Sangoma" for product "Certified Asterisk" and version "18.9" | cert4 |
Affected
| ||||||
| Sangoma Search vendor "Sangoma" | Certified Asterisk Search vendor "Sangoma" for product "Certified Asterisk" | 18.9 Search vendor "Sangoma" for product "Certified Asterisk" and version "18.9" | cert5 |
Affected
| ||||||