CVE-2026-23741

Name of the Vulnerable Software and Affected Versions Asterisk versions prior to 20.7-cert9 Asterisk versions prior to 20.18.2 Asterisk versions prior to 21.12.1 Asterisk versions prior to 22.8.2 Asterisk versions prior to 23.2.2

Description The asterisk/contrib/scripts/ast coredumper script runs with root privileges. The script sources the /etc/asterisk/ast debug tools.conf file, which is located in a directory writable by the asterisk user and group. An attacker with write access to this directory can modify the /etc/asterisk/ast debug tools.conf file to include arbitrary bash code. When the root-privileged ast coredumper script is executed, it will source and execute this malicious code. The vulnerable script is ast coredumper. The vulnerable file is /etc/asterisk/ast debug tools.conf.

Recommendations Update to Asterisk version 20.7-cert9 or later. Update to Asterisk version 20.18.2 or later. Update to Asterisk version 21.12.1 or later. Update to Asterisk version 22.8.2 or later. Update to Asterisk version 23.2.2 or later.