Vulnerability Description
Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.15.2, 21.10.2, and 22.5.2, if a SIP request is received with an Authorization header that contains a realm that wasn't in a previous 401 response's WWW-Authenticate header, or an Authorization header with an incorrect realm was received without a previous 401 response being sent, the get_authorization_header() function in res_pjsip_authenticator_digest will return a NULL. This wasn't being checked before attempting to get the digest algorithm from the header which causes a SEGV. This issue has been patched in versions 20.15.2, 21.10.2, and 22.5.2. There are no workarounds.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sangoma | Asterisk | < 20.15.2 |
Related Weaknesses (CWE)
References
- https://github.com/asterisk/asterisk/commit/02993717b08f899d4aca9888062f35dfb198Patch
- https://github.com/asterisk/asterisk/pull/1407Issue TrackingPatch
- https://github.com/asterisk/asterisk/security/advisories/GHSA-64qc-9x89-rx5jVendor Advisory
FAQ
What is CVE-2025-57767?
CVE-2025-57767 is a vulnerability with a CVSS score of 7.5 (HIGH). Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.15.2, 21.10.2, and 22.5.2, if a SIP request is received with an Authorization header that contains a real...
How severe is CVE-2025-57767?
CVE-2025-57767 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-57767?
Check the references section above for vendor advisories and patch information. Affected products include: Sangoma Asterisk.