Asterisk Asterisk-addons — known CVE vulnerabilities
Every CVE whose affected-product data names Asterisk Asterisk-addons, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2007-5488 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in cdr_addon_mysql in Asterisk-Addons before 1.2.8, and 1.4.x before 1.4.4, allow remote attackers…
CVE-2008-2543 — CVSS 5.0 (medium): The ooh323 channel driver in Asterisk Addons 1.2.x before 1.2.9 and Asterisk-Addons 1.4.x before 1.4.7 creates a remotely accessible TCP…