Mmichelson

**Name of the Vulnerable Software and Affected Versions** Asterisk Open Source versions prior to 12.1.0 **Description** The issue allows remote authenticated users to cause a denial of service (crash) via a SUBSCRIBE request without any Accept headers, which triggers an invalid pointer dereference in the PJSIP channel driver. **Recommendations** For versions prior to 12.1.0, update to version 12.1.0 or later to resolve the issue.