Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/10/28 2:38 a.m.6 views

CVE-2025-12206

A flaw has been found in Kamailio 5.5. The impacted element is the function rveisconstant of the file src/core/rvalue.c. This manipulation causes null pointer dereference. The attack needs to be launched locally. The exploit has been published and may be used. It is still unclear if this...

5.5CVSS3.9AI score0.00219EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-12205

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was detected in Kamailio 5.5. The affected element is the function srpushyystate of the file src/core/cfg.lex of the component Configuration Fil...

7.8CVSS5.7AI score0.00207EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-12204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security vulnerability has been detected in Kamailio 5.5. Impacted is the function rvedestroy of the file src/core/rvalue.c of the component Configuration Fil...

7.8CVSS5.9AI score0.0028EPSS
Exploits1References3
NVD
NVD
added 2025/10/27 3:15 a.m.24 views

CVE-2025-12205

A vulnerability was detected in Kamailio 5.5. The affected element is the function srpushyystate of the file src/core/cfg.lex of the component Configuration File Handler. The manipulation results in use after free. The attack must be initiated from a local position. The exploit is now public and...

7.8CVSS0.00207EPSS
Exploits1References8
NVD
NVD
added 2025/10/27 3:15 a.m.5 views

CVE-2025-12207

A vulnerability has been found in Kamailio 5.5. This affects the function yyerrorat of the file src/core/cfg.y of the component Grammar Rule Handler. Such manipulation leads to null pointer dereference. The attack needs to be performed locally. The exploit has been disclosed to the public and may...

5.5CVSS0.00211EPSS
Exploits1References9
OSV
OSV
added 2025/10/27 3:15 a.m.4 views

UBUNTU-CVE-2025-12204

A security vulnerability has been detected in Kamailio 5.5. Impacted is the function rvedestroy of the file src/core/rvalue.c of the component Configuration File Handler. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed...

7.8CVSS5.7AI score0.0028EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2025/10/27 2:32 a.m.4 views

CVE-2025-12207

A vulnerability has been found in Kamailio 5.5. This affects the function yyerrorat of the file src/core/cfg.y of the component Grammar Rule Handler. Such manipulation leads to null pointer dereference. The attack needs to be performed locally. The exploit has been disclosed to the public and may...

5.5CVSS4AI score0.00211EPSS
Exploits1
OSV
OSV
added 2025/10/27 2:32 a.m.5 views

CVE-2025-12206 Kamailio rvalue.c rve_is_constant null pointer dereference

A flaw has been found in Kamailio 5.5. The impacted element is the function rveisconstant of the file src/core/rvalue.c. This manipulation causes null pointer dereference. The attack needs to be launched locally. The exploit has been published and may be used. It is still unclear if this...

4.8CVSS5.3AI score0.00219EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/27 2:32 a.m.5 views

EUVD-2025-36070

A flaw has been found in Kamailio 5.5. The impacted element is the function rveisconstant of the file src/core/rvalue.c. This manipulation causes null pointer dereference. The attack needs to be launched locally. The exploit has been published and may be used. The vendor was contacted early about...

4.8CVSS5.9AI score0.00219EPSS
Exploits1References6
CVE
CVE
added 2025/10/27 2:32 a.m.25 views

CVE-2025-12206

Kamailio 5.5 is affected by CVE-2025-12206 due to a flaw in the rve_is_constant function in src/core/rvalue.c, causing a null pointer dereference. The attack is local and relies on manipulating configuration files; an exploit has been published, but it is still unclear whether the vulnerability e...

5.5CVSS3.7AI score0.00219EPSS
Exploits1References9Affected Software1
EUVD
EUVD
added 2025/10/27 2:32 a.m.7 views

EUVD-2025-36071

A vulnerability was detected in Kamailio 5.5. The affected element is the function srpushyystate of the file src/core/cfg.lex of the component Configuration File Handler. The manipulation results in use after free. The attack must be initiated from a local position. The exploit is now public and...

5.3CVSS5.8AI score0.00207EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/27 2:2 a.m.4 views

EUVD-2025-36064

A security vulnerability has been detected in Kamailio 5.5. Impacted is the function rvedestroy of the file src/core/rvalue.c of the component Configuration File Handler. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed...

5.3CVSS6.2AI score0.0028EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2025/10/27 2:2 a.m.4 views

CVE-2025-12204

A security vulnerability has been detected in Kamailio 5.5. Impacted is the function rvedestroy of the file src/core/rvalue.c of the component Configuration File Handler. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed...

7.8CVSS5.5AI score0.0028EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.7 views

PT-2025-43867

Name of the Vulnerable Software and Affected Versions Kamailio version 5.5 Description A flaw exists in Kamailio 5.5 within the Grammar Rule Handler component, specifically in the yyerror at function located in the src/core/cfg.y file. This issue can lead to a null pointer dereference. Exploitati...

5.5CVSS5.7AI score0.00211EPSS
Exploits1References10
Rows per page
Query Builder