Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-28098

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, a specially crafted Authorization header causes OpenSIPS...

7.5CVSS7.3AI score0.00905EPSS
Exploits0References2
CVE
CVE
added 2023/03/15 10:11 p.m.62 views

CVE-2023-28098

CVE-2023-28098 affects OpenSIPS before versions 3.1.7 and 3.2.4. A specially crafted Authorization header triggers a bug in parse_param_name() (invoked during parse_msg) that can lead to a crash or erratic behavior, with the fault traced to q_memchr() via parse_param_name(). The issue may impact ...

7.5CVSS6.4AI score0.00905EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/03/15 10:11 p.m.17 views

CVE-2023-28098 OpenSIPS has vulnerability in the Digest Authentication Parser

OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, a specially crafted Authorization header causes OpenSIPS to crash or behave in an unexpected way due to a bug in the function parseparamname . This issue was discovered while performing coverag...

5.9CVSS7.4AI score0.00905EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/03/15 10:11 p.m.7 views

CVE-2023-28098 OpenSIPS has vulnerability in the Digest Authentication Parser

OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, a specially crafted Authorization header causes OpenSIPS to crash or behave in an unexpected way due to a bug in the function parseparamname . This issue was discovered while performing coverag...

5.9CVSS7.5AI score0.00905EPSS
Exploits0References3
Rows per page
Query Builder