4 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-28098
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, a specially crafted Authorization header causes OpenSIPS...
CVE-2023-28098
CVE-2023-28098 affects OpenSIPS before versions 3.1.7 and 3.2.4. A specially crafted Authorization header triggers a bug in parse_param_name() (invoked during parse_msg) that can lead to a crash or erratic behavior, with the fault traced to q_memchr() via parse_param_name(). The issue may impact ...
CVE-2023-28098 OpenSIPS has vulnerability in the Digest Authentication Parser
OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, a specially crafted Authorization header causes OpenSIPS to crash or behave in an unexpected way due to a bug in the function parseparamname . This issue was discovered while performing coverag...
CVE-2023-28098 OpenSIPS has vulnerability in the Digest Authentication Parser
OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, a specially crafted Authorization header causes OpenSIPS to crash or behave in an unexpected way due to a bug in the function parseparamname . This issue was discovered while performing coverag...