CVE-2025-47780

CVE Database · CVE-2025-47780

CVE-2025-47780

· HIGHModified

CVSS v3.1

7.8

CVSS v4.0

4.8

EPSS

0.23%

Published

May 22, 2025

Modified

Nov 3, 2025

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Asterisk is an open-source private branch exchange (PBX). Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, trying to disallow shell commands to be run via the Asterisk command line interface (CLI) by configuring `cli_permissions.conf` (e.g. with the config line `deny=!*`) does not work which could lead to a security risk. If an administrator running an Asterisk instance relies on the `cli_permissions.conf` file to work and expects it to deny all attempts to execute shell commands, then this could lead to a security vulnerability. Versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk fix the issue.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-78

Affected Products (28)

sangoma · asterisk (up to 18.26.2)vulnerable

sangoma · asterisk (up to 20.14.1)vulnerable

sangoma · asterisk (up to 21.9.1)vulnerable

sangoma · asterisk (up to 22.4.1)vulnerable

sangoma · certified_asterisk (up to 18.9)vulnerable

sangoma · certified_asteriskvulnerable

References (2)

https://github.com/asterisk/asterisk/security/advisories/GHSA-c7p6-7mvq-8jq2

ExploitVendor Advisory

https://lists.debian.org/debian-lts-announce/2025/06/msg00003.html

KEV Catalog EPSS Scores Vendors All CVEs