VYPR
Unrated severityNVD Advisory· Published Jun 17, 2014· Updated Jun 17, 2026

CVE-2014-4046

CVE-2014-4046

Description

Asterisk Open Source 11.x before 11.10.1 and 12.x before 12.3.1 and Certified Asterisk 11.6 before 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMonitor action.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

56
  • Digium/Asterisk47 versions
    cpe:2.3:a:digium:asterisk:11.0.0:*:*:*:*:*:*:*+ 46 more
    • cpe:2.3:a:digium:asterisk:11.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.0.0:beta1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.0.0:beta2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.0.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.0.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.10.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.10.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.1.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.1.0:rc3:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.2.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.2.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.3.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.3.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.4.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.4.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.4.0:rc3:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.5.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.5.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.8.0:-:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.8.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.8.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.8.0:rc3:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.8.1:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.9.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:11.9.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.1.0:-:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.1.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.1.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.1.0:rc3:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.2.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.2.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.2.0:rc3:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.3.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:asterisk:12.3.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:digium:certified_asterisk:11.6.0:-:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:digium:certified_asterisk:11.6.0:-:*:*:*:*:*:*
    • cpe:2.3:a:digium:certified_asterisk:11.6.0:rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:certified_asterisk:11.6.0:rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:certified_asterisk:11.6:cert1:*:*:*:*:*:*
    • cpe:2.3:a:digium:certified_asterisk:11.6:cert1_rc1:*:*:*:*:*:*
    • cpe:2.3:a:digium:certified_asterisk:11.6:cert1_rc2:*:*:*:*:*:*
    • cpe:2.3:a:digium:certified_asterisk:11.6:cert2:*:*:*:*:*:*
  • Range: 11.6 before 11.6-cert3
  • Range: 11.x before 11.10.1 and 12.x before 12.3.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.