Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 11+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Low
Asterisk ast_coredumper Local Privilege Escalation via GDB Init File (CVE-2026-2374)
CVE-2026-2374 · github.com · 2026-02-07
Asterisk <= 23.2.1 · Asterisk <= 22.8.1 …
Read more
Asterisk CVE-2025-1131 Local Privilege Escalation via Uncontrolled Search-Path
github.com · 2025-09-24

### Critical Vulnerability Information #### Vulnerability Overview - **Title**: Uncontrolled Search-Path Element in safe_asterisk script may allow local privilege escalation. - **Publisher**: gtjoseph…

Read more
CVSS 6.5
Asterisk FreePBX CVE-2021-40599 Remote DoS via RTP UDP Port Leak
github.com · 2025-08-29

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Resource Exhaustion (DoS) Vulnerability: Remote exploitable RTP UDP port and internal resource leakage - **CVE ID**: CVE-2021-…

Read more
Asterisk CLI Permission Bypass Vulnerability (CVE-2025-47780) Analysis
github.com · 2025-05-24

### Critical Vulnerability Information #### Vulnerability Overview - **CVE ID**: CVE-2025-47780 - **Severity**: Medium (CVSS v4: 4.8/10) - **Affected Versions**: - <= 18.26.1 - <= 20.14.0 - <= 21.9.0 …

Read more
CVSS 7.7
Asterisk CVE-2025-47779: SIP Message Identity Spoofing via Malformed From Header
github.com · 2025-05-24

### Critical Vulnerability Information #### Vulnerability Overview - **Vulnerability Type**: Identity spoofing via malformed From header, achieved by using ";" or NULL in the name part. - **CVE ID**: …

Read more
CVSS 5.7
Asterisk CVE-2024-42491 URI Parsing Crash Vulnerability and Mitigation
github.com · 2024-09-07

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Type**: Asterisk may crash when processing URIs…

Read more
CVSS 5.7
FreeSWITCH libunbound NULL Pointer Dereference Fix (GHSA-v428-g3cw-7hv9)
github.com · 2024-09-07

From this webpage screenshot, we can extract the following key information about the vulnerability: 1. **Vulnerability Description**: - **Title**: `res_resolver_unbound: Test for NULL ub_result in unb…

Read more
CVSS 5.7
Asterisk libunbound NULL Pointer Crash Fix in DNS Resolution (GHSA-v428-g3cw-7hv9)
github.com · 2024-09-07

From this webpage screenshot, we can extract the following key information about the vulnerability: 1. **Vulnerability Description**: - **Title**: `res_resolver_unbound: Test for NULL ub_result in unb…

Read more
Premium intel
CVSS 7.4
Asterisk Dialplan Permission Bypass Leading to RCE and Privilege Escalation
github.com · 2024-08-10

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Name**: Write=originate, is sufficient permissi…

Read more
Premium intel
CVSS 7.4
Asterisk Originate Manager Action Privilege Escalation Fix (GHSA-c4cg-9275-6w44)
github.com · 2024-08-10

From this webpage screenshot, we can extract the following key information about the vulnerability: 1. **Code Changes**: - File: `main/manager.c` - Lines changed: 161 - Lines added: 141 - Lines delete…

Read more
Premium intel
CVSS 7.4
Asterisk Originate Manager Action Privilege Escalation Fix (GHSA-c4cg-9275-6w44)
github.com · 2024-08-10

From this webpage screenshot, we can extract the following key information about the vulnerability: 1. **Code Changes**: - File: `main/manager.c` - Lines changed: 161 - Lines added: 141 - Lines delete…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.