9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
74.2%
A vulnerability in the pjproject multimedia communication library is related to an infinite loop when parsing a
of a WAV file. Exploitation of the vulnerability could allow an attacker acting remotely to consume
all available system resources and cause denial of service conditions
A vulnerability in the pjproject multimedia communication library is related to an infinite loop during the
XML parsing. Exploitation of the vulnerability could allow an attacker, acting remotely,
consume all available system resources and cause a denial of service condition
A vulnerability in the pjproject multimedia communication library is related to a boundary error in the parsing of an
RTCP feedback RPSI packet. Exploitation of the vulnerability could allow an intruder acting
remotely, to initiate unauthorized writing and execution of arbitrary code on the target system
The pjproject multimedia communication library vulnerability is related to a memory boundary error in the
“pjmedia_sdp_print()” and “pjmedia_sdp_media_print()”. Exploitation of the vulnerability could allow an attacker,
acting remotely, cause a stack buffer overflow and execute arbitrary code on the target system
Vulnerability in the pjproject multimedia communication library, related to a boundary error in the
pjsip_auth_create_digest(). Exploitation of the vulnerability could allow an attacker acting remotely,
cause memory corruption and execute arbitrary code on the target system
A vulnerability in the pjproject multimedia communication library is related to a boundary error in analyzing
DNS packets. Exploitation of the vulnerability could allow an attacker acting remotely to send specially crafted data to an application, cause memory corruption, and execute arbitrary code.
specially crafted data to an application, cause a heap buffer overflow, and execute arbitrary code on the target system.
target system
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
74.2%