Lucene search
K

142 matches found

BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.6 views

The vulnerability of the PJSIP multimedia communication library, related to a countable loss of significance, allows attackers to execute arbitrary code.

The vulnerability of the PJSIP multimedia communication library is related to a countable loss of significance during the processing of messages with the ERROR-CODE attribute. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary commands...

7.5CVSS8AI score0.0462EPSS
Exploits0References6Affected Software2
OSV
OSV
added 2022/01/27 12:15 a.m.3 views

DEBIAN-CVE-2022-21723

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions 2.11.1 and prior, parsing an incoming SIP message that contains a malformed multipart can potentially cause...

9.1CVSS8.4AI score0.04478EPSS
Exploits0References1
OSV
OSV
added 2022/01/27 12:15 a.m.4 views

ALPINE-CVE-2022-21723

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions 2.11.1 and prior, parsing an incoming SIP message that contains a malformed multipart can potentially cause...

9.1CVSS7AI score0.04478EPSS
Exploits0References1
OSV
OSV
added 2022/01/27 12:15 a.m.3 views

UBUNTU-CVE-2022-21722

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.11.1 and prior, there are various cases where it is possible that certain incoming RTP/RTCP packets can potentially...

9.1CVSS7.3AI score0.02405EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2022/01/27 12:0 a.m.2 views

CVE-2022-21723 Out-of-bounds read in multipart parsing in PJSIP

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions 2.11.1 and prior, parsing an incoming SIP message that contains a malformed multipart can potentially cause...

9.1CVSS8.8AI score0.04478EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2022/01/27 12:0 a.m.3 views

CVE-2022-21722 Potential out-of-bound read during RTP/RTCP parsing in PJSIP

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.11.1 and prior, there are various cases where it is possible that certain incoming RTP/RTCP packets can potentially...

9.1CVSS8.8AI score0.02405EPSS
Exploits0References7
OSV
OSV
added 2022/01/04 7:15 p.m.2 views

ALPINE-CVE-2021-41141

PJSIP is a free and open source multimedia communication library written in the C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In various parts of PJSIP, when error/failure occurs, it is found that the function returns without releasing the currently...

7.5CVSS6.6AI score0.01367EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/01/04 12:0 a.m.5 views

CVE-2021-41141 Missing release of locks in PJSIP

PJSIP is a free and open source multimedia communication library written in the C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In various parts of PJSIP, when error/failure occurs, it is found that the function returns without releasing the currently...

5.9CVSS7AI score0.01367EPSS
Exploits0References4
OSV
OSV
added 2021/12/27 6:15 p.m.7 views

UBUNTU-CVE-2021-43845

PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...

9.1CVSS7.3AI score0.03722EPSS
Exploits1References6
AlpineLinux
AlpineLinux
added 2021/12/27 12:0 a.m.40 views

CVE-2021-43845

PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...

9.1CVSS9AI score0.03722EPSS
Exploits1
OSV
OSV
added 2021/12/22 6:15 p.m.2 views

ALPINE-CVE-2021-43804

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In affected versions if the incoming RTCP BYE message contains a reason's length, this declared length is not checked against th...

7.3CVSS6.8AI score0.02192EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/12/22 12:0 a.m.9 views

PT-2021-6171 · Pjsip +3 · Pjsip +3

Name of the Vulnerable Software and Affected Versions: PJSIP versions prior to the fixed version Description: The issue is related to a buffer overflow in the PJSIP library when handling the length of RTCP BYE messages. This can be exploited by a remote attacker to execute arbitrary code. The...

9.8CVSS8.8AI score0.16406EPSS
Exploits2References110
OSV
OSV
added 2021/07/23 10:15 p.m.1 views

DEBIAN-CVE-2021-32686

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP before version 2.11.1, there are a couple of issues found in the SSL socket. First, a race condition between callback a...

5.9CVSS7.2AI score0.02082EPSS
Exploits0References1
OSV
OSV
added 2021/07/23 10:15 p.m.3 views

ALPINE-CVE-2021-32686

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP before version 2.11.1, there are a couple of issues found in the SSL socket. First, a race condition between callback a...

5.9CVSS6.8AI score0.02082EPSS
Exploits0References1
OSV
OSV
added 2021/03/10 11:15 p.m.2 views

DEBIAN-CVE-2020-15260

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.10 and earlier, PJSIP transport can be reused if they have the same IP address + port + protocol. However, this is...

6.8CVSS7.7AI score0.00991EPSS
Exploits0References1
OSV
OSV
added 2021/03/10 11:15 p.m.2 views

DEBIAN-CVE-2021-21375

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earlier, after an initial INVITE has been sent, when two 183 responses are received, with the first on...

6.5CVSS7.3AI score0.02088EPSS
Exploits1References1
OSV
OSV
added 2021/03/10 11:15 p.m.2 views

ALPINE-CVE-2021-21375

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earlier, after an initial INVITE has been sent, when two 183 responses are received, with the first on...

6.5CVSS6.9AI score0.02088EPSS
Exploits1References1
OSV
OSV
added 2021/03/10 11:15 p.m.7 views

UBUNTU-CVE-2021-21375

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earlier, after an initial INVITE has been sent, when two 183 responses are received, with the first on...

6.5CVSS7.2AI score0.02088EPSS
Exploits1References5
Cvelist
Cvelist
added 2021/03/10 10:30 p.m.51 views

CVE-2020-15260 Existing TLS connections can be reused without checking remote hostname

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.10 and earlier, PJSIP transport can be reused if they have the same IP address + port + protocol. However, this is...

6.8CVSS6.4AI score0.00991EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/03/10 12:0 a.m.4 views

PT-2021-14457

Name of the Vulnerable Software and Affected Versions PJSIP versions 2.10 and earlier Description PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP, after an initial...

9.8CVSS7AI score0.0462EPSS
Exploits4References42
Rows per page
Query Builder