Back to search
CVE-2018-7287
Published: Feb 22, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
An issue was discovered in res_http_websocket.c in Asterisk 15.x through 15.2.1. If the HTTP server is enabled (default is disabled), WebSocket payloads of size 0 are mishandled (with a busy loop).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1040419
vdb-entry
x_refsource_SECTRACK
103120
vdb-entry
x_refsource_BID
https://issues.asterisk.org/jira/browse/ASTERISK-27658
x_refsource_CONFIRM
http://downloads.digium.com/pub/security/AST-2018-006.html
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now