cvelistv5 - cve-2025-47779

CVE-2025-47779 (GCVE-0-2025-47779)

Vulnerability from cvelistv5

Published

2025-05-22 16:54

Modified

2025-05-22 17:26

Severity ?

7.7 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

CWE

CWE-140 - Improper Neutralization of Delimiters
CWE-792 - Incomplete Filtering of One or More Instances of Special Elements

Summary

Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE (RFC 3428) authentication do not get proper alignment. An authenticated attacker can spoof any user identity to send spam messages to the user with their authorization token. Abuse of this security issue allows authenticated attackers to send fake chat messages can be spoofed to appear to come from trusted entities. Even administrators who follow Security best practices and Security Considerations can be impacted. Therefore, abuse can lead to spam and enable social engineering, phishing and similar attacks. Versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk fix the issue.

References

►

URL

Tags

	security-advisories@github.com	https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample
	security-advisories@github.com	https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw

Impacted products

	Vendor	Product	Version
	asterisk	asterisk	Version: < 18.9-cert14 Version: >= 18.10, < 18.26.2 Version: >= 20.0, < 20.7-cert5 Version: >= 20.8, < 20.14.1 Version: >= 21.0, < 21.9.1 Version: >= 22.0, < 22.4.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-47779",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-22T17:25:58.891881Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-22T17:26:57.260Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "asterisk",
          "vendor": "asterisk",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 18.9-cert14"
            },
            {
              "status": "affected",
              "version": "\u003e= 18.10, \u003c 18.26.2"
            },
            {
              "status": "affected",
              "version": "\u003e= 20.0, \u003c 20.7-cert5"
            },
            {
              "status": "affected",
              "version": "\u003e= 20.8, \u003c 20.14.1"
            },
            {
              "status": "affected",
              "version": "\u003e= 21.0, \u003c 21.9.1"
            },
            {
              "status": "affected",
              "version": "\u003e= 22.0, \u003c 22.4.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE (RFC 3428) authentication do not get proper alignment. An authenticated attacker can spoof any user identity to send spam messages to the user with their authorization token. Abuse of this security issue allows authenticated attackers to send fake chat messages can be spoofed to appear to come from trusted entities. Even administrators who follow Security best practices and Security Considerations can be impacted. Therefore, abuse can lead to spam and enable social engineering, phishing and similar attacks. Versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk fix the issue."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-140",
              "description": "CWE-140: Improper Neutralization of Delimiters",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-792",
              "description": "CWE-792: Incomplete Filtering of One or More Instances of Special Elements",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-22T16:54:26.314Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw"
        },
        {
          "name": "https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample"
        }
      ],
      "source": {
        "advisory": "GHSA-2grh-7mhv-fcfw",
        "discovery": "UNKNOWN"
      },
      "title": "Using malformed From header can forge identity with \";\" or NULL in name portion"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-47779",
    "datePublished": "2025-05-22T16:54:26.314Z",
    "dateReserved": "2025-05-09T19:49:35.620Z",
    "dateUpdated": "2025-05-22T17:26:57.260Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-47779\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-05-22T17:15:24.730\",\"lastModified\":\"2025-05-23T15:55:02.040\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE (RFC 3428) authentication do not get proper alignment. An authenticated attacker can spoof any user identity to send spam messages to the user with their authorization token. Abuse of this security issue allows authenticated attackers to send fake chat messages can be spoofed to appear to come from trusted entities. Even administrators who follow Security best practices and Security Considerations can be impacted. Therefore, abuse can lead to spam and enable social engineering, phishing and similar attacks. Versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk fix the issue.\"},{\"lang\":\"es\",\"value\":\"Asterisk es una centralita privada (PBX) de c\u00f3digo abierto. En versiones anteriores a las 18.26.2, 20.14.1, 21.9.1 y 22.4.1 de Asterisk, y a las versiones 18.9-cert14 y 20.7-cert5 de Asterisk certificado, las solicitudes SIP con autenticaci\u00f3n de tipo MESSAGE (RFC 3428) no se alineaban correctamente. Un atacante autenticado puede suplantar la identidad de cualquier usuario para enviarle spam con su token de autorizaci\u00f3n. El abuso de este problema de seguridad permite a los atacantes autenticados enviar mensajes de chat falsos, que pueden falsificarse para que parezcan provenir de entidades de confianza. Incluso los administradores que siguen las mejores pr\u00e1cticas y consideraciones de seguridad pueden verse afectados. Por lo tanto, el abuso puede generar spam y facilitar la ingenier\u00eda social, el phishing y ataques similares. Las versiones 18.26.2, 20.14.1, 21.9.1 y 22.4.1 de Asterisk y las versiones 18.9-cert14 y 20.7-cert5 de certified-asterisk solucionan el problema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N\",\"baseScore\":7.7,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.1,\"impactScore\":4.0}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-140\"},{\"lang\":\"en\",\"value\":\"CWE-792\"}]}],\"references\":[{\"url\":\"https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw\",\"source\":\"security-advisories@github.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-47779\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-05-22T17:25:58.891881Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-22T17:26:51.712Z\"}}], \"cna\": {\"title\": \"Using malformed From header can forge identity with \\\";\\\" or NULL in name portion\", \"source\": {\"advisory\": \"GHSA-2grh-7mhv-fcfw\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 7.7, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"asterisk\", \"product\": \"asterisk\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 18.9-cert14\"}, {\"status\": \"affected\", \"version\": \"\u003e= 18.10, \u003c 18.26.2\"}, {\"status\": \"affected\", \"version\": \"\u003e= 20.0, \u003c 20.7-cert5\"}, {\"status\": \"affected\", \"version\": \"\u003e= 20.8, \u003c 20.14.1\"}, {\"status\": \"affected\", \"version\": \"\u003e= 21.0, \u003c 21.9.1\"}, {\"status\": \"affected\", \"version\": \"\u003e= 22.0, \u003c 22.4.1\"}]}], \"references\": [{\"url\": \"https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw\", \"name\": \"https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample\", \"name\": \"https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE (RFC 3428) authentication do not get proper alignment. An authenticated attacker can spoof any user identity to send spam messages to the user with their authorization token. Abuse of this security issue allows authenticated attackers to send fake chat messages can be spoofed to appear to come from trusted entities. Even administrators who follow Security best practices and Security Considerations can be impacted. Therefore, abuse can lead to spam and enable social engineering, phishing and similar attacks. Versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk fix the issue.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-140\", \"description\": \"CWE-140: Improper Neutralization of Delimiters\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-792\", \"description\": \"CWE-792: Incomplete Filtering of One or More Instances of Special Elements\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-05-22T16:54:26.314Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-47779\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-22T17:26:57.260Z\", \"dateReserved\": \"2025-05-09T19:49:35.620Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-05-22T16:54:26.314Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

wid-sec-w-2025-1135

Vulnerability from csaf_certbund

Published

2025-05-22 22:00

Modified

2025-06-02 22:00

Summary

Asterisk: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Asterisk ist eine komplette Open Source Multiprotokoll Telefonanlage (PBX) auf Softwarebasis.

Angriff

Ein Angreifer kann mehrere Schwachstellen in Asterisk ausnutzen, um falsche Informationen darzustellen und um Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme

- Linux - Sonstiges - UNIX

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Asterisk ist eine komplette Open Source Multiprotokoll Telefonanlage (PBX) auf Softwarebasis.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Asterisk ausnutzen, um falsche Informationen darzustellen und um Sicherheitsvorkehrungen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1135 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1135.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1135 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1135"
      },
      {
        "category": "external",
        "summary": "Asterisk Github vom 2025-05-22",
        "url": "https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw"
      },
      {
        "category": "external",
        "summary": "Asterisk Github vom 2025-05-22",
        "url": "https://github.com/asterisk/asterisk/security/advisories/GHSA-c7p6-7mvq-8jq2"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4206 vom 2025-06-02",
        "url": "https://lists.debian.org/debian-lts-announce/2025/06/msg00003.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Asterisk: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-06-02T22:00:00.000+00:00",
      "generator": {
        "date": "2025-06-03T09:29:08.893+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2025-1135",
      "initial_release_date": "2025-05-22T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-05-22T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-06-02T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Debian aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c18.26.2",
                "product": {
                  "name": "Open Source Asterisk \u003c18.26.2",
                  "product_id": "T044124"
                }
              },
              {
                "category": "product_version",
                "name": "18.26.2",
                "product": {
                  "name": "Open Source Asterisk 18.26.2",
                  "product_id": "T044124-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:digium:asterisk:18.26.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c20.14.1",
                "product": {
                  "name": "Open Source Asterisk \u003c20.14.1",
                  "product_id": "T044125"
                }
              },
              {
                "category": "product_version",
                "name": "20.14.1",
                "product": {
                  "name": "Open Source Asterisk 20.14.1",
                  "product_id": "T044125-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:digium:asterisk:20.14.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c21.9.1",
                "product": {
                  "name": "Open Source Asterisk \u003c21.9.1",
                  "product_id": "T044126"
                }
              },
              {
                "category": "product_version",
                "name": "21.9.1",
                "product": {
                  "name": "Open Source Asterisk 21.9.1",
                  "product_id": "T044126-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:digium:asterisk:21.9.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c22.4.1",
                "product": {
                  "name": "Open Source Asterisk \u003c22.4.1",
                  "product_id": "T044127"
                }
              },
              {
                "category": "product_version",
                "name": "22.4.1",
                "product": {
                  "name": "Open Source Asterisk 22.4.1",
                  "product_id": "T044127-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:digium:asterisk:22.4.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c18.9-cert14",
                "product": {
                  "name": "Open Source Asterisk \u003c18.9-cert14",
                  "product_id": "T044128"
                }
              },
              {
                "category": "product_version",
                "name": "18.9-cert14",
                "product": {
                  "name": "Open Source Asterisk 18.9-cert14",
                  "product_id": "T044128-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:digium:asterisk:18.9-cert14"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c20.7-cert5",
                "product": {
                  "name": "Open Source Asterisk \u003c20.7-cert5",
                  "product_id": "T044129"
                }
              },
              {
                "category": "product_version",
                "name": "20.7-cert5",
                "product": {
                  "name": "Open Source Asterisk 20.7-cert5",
                  "product_id": "T044129-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:digium:asterisk:20.7-cert5"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Asterisk"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-47779",
      "product_status": {
        "known_affected": [
          "T044126",
          "T044125",
          "T044128",
          "T044127",
          "2951",
          "T044129",
          "T044124"
        ]
      },
      "release_date": "2025-05-22T22:00:00.000+00:00",
      "title": "CVE-2025-47779"
    },
    {
      "cve": "CVE-2025-47780",
      "product_status": {
        "known_affected": [
          "T044126",
          "T044125",
          "T044128",
          "T044127",
          "2951",
          "T044129",
          "T044124"
        ]
      },
      "release_date": "2025-05-22T22:00:00.000+00:00",
      "title": "CVE-2025-47780"
    }
  ]
}

fkie_cve-2025-47779

Vulnerability from fkie_nvd

Published

2025-05-22 17:15

Modified

2025-05-23 15:55

Severity ?

7.7 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N

Summary

References

▶	URL	Tags
	security-advisories@github.com	https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample
	security-advisories@github.com	https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE (RFC 3428) authentication do not get proper alignment. An authenticated attacker can spoof any user identity to send spam messages to the user with their authorization token. Abuse of this security issue allows authenticated attackers to send fake chat messages can be spoofed to appear to come from trusted entities. Even administrators who follow Security best practices and Security Considerations can be impacted. Therefore, abuse can lead to spam and enable social engineering, phishing and similar attacks. Versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk fix the issue."
    },
    {
      "lang": "es",
      "value": "Asterisk es una centralita privada (PBX) de c\u00f3digo abierto. En versiones anteriores a las 18.26.2, 20.14.1, 21.9.1 y 22.4.1 de Asterisk, y a las versiones 18.9-cert14 y 20.7-cert5 de Asterisk certificado, las solicitudes SIP con autenticaci\u00f3n de tipo MESSAGE (RFC 3428) no se alineaban correctamente. Un atacante autenticado puede suplantar la identidad de cualquier usuario para enviarle spam con su token de autorizaci\u00f3n. El abuso de este problema de seguridad permite a los atacantes autenticados enviar mensajes de chat falsos, que pueden falsificarse para que parezcan provenir de entidades de confianza. Incluso los administradores que siguen las mejores pr\u00e1cticas y consideraciones de seguridad pueden verse afectados. Por lo tanto, el abuso puede generar spam y facilitar la ingenier\u00eda social, el phishing y ataques similares. Las versiones 18.26.2, 20.14.1, 21.9.1 y 22.4.1 de Asterisk y las versiones 18.9-cert14 y 20.7-cert5 de certified-asterisk solucionan el problema."
    }
  ],
  "id": "CVE-2025-47779",
  "lastModified": "2025-05-23T15:55:02.040",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.7,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.1,
        "impactScore": 4.0,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-05-22T17:15:24.730",
  "references": [
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/asterisk/asterisk/blob/master/configs/samples/pjsip.conf.sample"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-140"
        },
        {
          "lang": "en",
          "value": "CWE-792"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2025-47779 (GCVE-0-2025-47779)

Vulnerability from cvelistv5

wid-sec-w-2025-1135

Vulnerability from csaf_certbund

fkie_cve-2025-47779

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature