CVE-2024-49215

Name of the Vulnerable Software and Affected Versions Sangoma Asterisk versions 18.20.0 and earlier, 19.x, 20.x through 20.5.0, and 21.x through 21.0.0 Certified Asterisk through 18.9-cert5

Description A path traversal vulnerability was discovered due to the functions action getconfig() and action getconfigJson() in manager.c not processing the input file path. This results in the ability to traverse paths and potentially access sensitive data. In versions without the restrictedFile() function, no processing is done on the input path, while in versions with this function, path traversal is still not properly handled.

Recommendations For Sangoma Asterisk versions 18.20.0 and earlier, 19.x, 20.x through 20.5.0, and 21.x through 21.0.0, update to a version that includes the fix for this issue. For Certified Asterisk through 18.9-cert5, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the action getconfig() and action getconfigJson() functions in manager.c until a patch is available.