Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-31003
HistoryMay 31, 2022 - 8:15 p.m.

Out-of-bounds

2022-05-3120:15:00
PRIOn knowledge base
www.prio-n.com
5

9.6 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

JSON

Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent library. Prior to version 1.13.8, when parsing each line of a sdp message, rest = record + 2 will access the memory behind \0 and cause an out-of-bounds write. An attacker can send a message with evil sdp to FreeSWITCH, causing a crash or more serious consequence, such as remote code execution. Version 1.13.8 contains a patch for this issue.

CPENameOperatorVersion
debian_linuxeq10.0
sofia-siplt1.13.8

Related

alpinelinux 1
veracode 1
debiancve 1
cve 1
osv 4
ubuntucve 1
cvelist 1
nvd 1
mageia 1
openvas 4
gentoo 1
nessus 4
debian 2
ubuntu 1
alpinelinux
alpinelinux
CVE-2022-31003
2022-05-31 20:15:07
veracode
veracode
Remote Code Execution (RCE)
2023-03-22 04:52:06
debiancve
debiancve
CVE-2022-31003
2022-05-31 20:15:07
cve
cve
CVE-2022-31003
2022-05-31 20:15:07
osv
osv
CVE-2022-31003
2022-05-31 20:15:07
sofia-sip - security update
2022-09-02 00:00:00
sofia-sip vulnerabilities
2023-03-07 14:34:13
ubuntucve
ubuntucve
CVE-2022-31003
2022-05-31 00:00:00
cvelist
cvelist
CVE-2022-31003 Heap-based Buffer Overflow and Out-of-bounds Write in Sofia-SIP
2022-05-31 00:00:00
nvd
nvd
CVE-2022-31003
2022-05-31 20:15:07
mageia
mageia
Updated sofia-sip packages fix security vulnerability
2022-09-21 21:15:27
openvas
openvas
Debian: Security Advisory (DLA-3091-1)
2022-09-03 00:00:00
Mageia: Security Advisory (MGASA-2022-0343)
2022-09-22 00:00:00
Debian: Security Advisory (DSA-5410-1)
2023-05-25 00:00:00
gentoo
gentoo
Sofia-SIP: Multiple Vulnerabilities
2022-10-31 00:00:00
nessus
nessus
Debian DLA-3091-1 : sofia-sip - LTS security update
2022-09-02 00:00:00
GLSA-202210-18 : Sofia-SIP: Multiple Vulnerabilities
2022-10-31 00:00:00
Debian DSA-5410-1 : sofia-sip - security update
2023-05-24 00:00:00
debian
debian
[SECURITY] [DLA 3091-1] sofia-sip security update
2022-09-02 05:45:22
[SECURITY] [DSA 5410-1] sofia-sip
2023-05-24 10:39:40
ubuntu
ubuntu
Sofia-SIP vulnerabilities
2023-03-07 00:00:00

9.6 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

JSON
Related for PRION:CVE-2022-31003
alpinelinux1veracode1debiancve1cve1osv4ubuntucve1cvelist1nvd1mageia1openvas4gentoo1nessus4debian2ubuntu1