CVE-2022-31001

🗓️ 31 May 2022 00:00:00Reported by GitHub_MType

cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 137 Views

Sofia-SIP prior to 1.13.8 allows remote attackers to cause a denial of service (DoS) via a crafted Session Description Protocol (SDP) message to FreeSWITC

Reporter	Title	Published	Views	Family All 39
ATTACKERKB	CVE-2022-31001	31 May 202220:15	–	attackerkb
AlpineLinux	CVE-2022-31001	31 May 202200:00	–	alpinelinux
Circl	CVE-2022-31001	1 Jun 202200:19	–	circl
CNNVD	Sofia-SIP 缓冲区错误漏洞	31 May 202200:00	–	cnnvd
Cvelist	CVE-2022-31001 Out-of-bounds Read in Sofia-SIP	31 May 202200:00	–	cvelist
Debian	[SECURITY] [DLA 3091-1] sofia-sip security update	2 Sep 202205:45	–	debian
Debian	[SECURITY] [DSA 5410-1] sofia-sip	24 May 202310:39	–	debian
Debian CVE	CVE-2022-31001	31 May 202200:00	–	debiancve
Tenable Nessus	Debian dla-3091 : libsofia-sip-ua-dev - security update	2 Sep 202200:00	–	nessus
Tenable Nessus	Debian DSA-5410-1 : sofia-sip - security update	24 May 202300:00	–	nessus

NVD

Vulners

Node

signalwire sofia-sipRange<1.13.8

Node

debian debian_linuxMatch10.0

debian debian_linuxMatch11.0

[
  {
    "vendor": "freeswitch",
    "product": "sofia-sip",
    "versions": [
      {
        "version": "< 1.13.8",
        "status": "affected"
      }
    ]
  }
]

Source	Link
security	www.security.gentoo.org/glsa/202210-18
github	www.github.com/freeswitch/sofia-sip/commit/a99804b336d0e16d26ab7119d56184d2d7110a36
lists	www.lists.debian.org/debian-lts-announce/2022/09/msg00001.html
debian	www.debian.org/security/2023/dsa-5410
github	www.github.com/freeswitch/sofia-sip/security/advisories/GHSA-79jq-hh82-cv9g

17 Jun 2026 04:44Current

7.8High risk

Vulners AI Score7.8

CVSS 25

CVSS 3.17.5

EPSS0.02022

CWE-125