Lucene search

K
cvelistJFROGCVELIST:CVE-2021-43302
HistoryFeb 16, 2022 - 12:00 a.m.

CVE-2021-43302

2022-02-1600:00:00
CWE-125
JFROG
www.cve.org
4
cve-2021-43302
pjsua api
out-of-bounds read
attacker-controlled filename

AI Score

9.5

Confidence

High

EPSS

0.003

Percentile

71.0%

Read out-of-bounds in PJSUA API when calling pjsua_recorder_create. An attacker-controlled ‘filename’ argument may cause an out-of-bounds read when the filename is shorter than 4 characters.

CNA Affected

[
  {
    "vendor": "teluu",
    "product": "pjsip",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThanOrEqual": "2.11.1",
        "versionType": "custom"
      }
    ]
  }
]

AI Score

9.5

Confidence

High

EPSS

0.003

Percentile

71.0%