CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

693 matches found

AlpineLinux•added 2022/04/25 12:0 a.m.•46 views

CVE-2022-24792

PJSIP is a free and open source multimedia communication library written in C. A denial-of-service vulnerability affects applications on a 32-bit systems that use PJSIP versions 2.12 and prior to play/read invalid WAV files. The vulnerability occurs when reading WAV file data chunks with length...

7.5CVSS7.6AI score0.01779EPSS

Exploits0

Debian CVE•added 2022/04/25 12:0 a.m.•44 views

CVE-2022-24792

7.5CVSS7.2AI score0.01779EPSS

Exploits0

BDU FSTEC•added 2022/04/13 12:0 a.m.•3 views

The vulnerability of the PJSIP multimedia communication library, related to the use of memory after its release, allows a intruder to cause a service failure.

The vulnerability of the PJSIP multimedia communication library is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

5.9CVSS7.8AI score0.03993EPSS

Exploits0References5Affected Software2

NVD•added 2022/04/06 2:15 p.m.•15 views

CVE-2022-24793

PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.12 and prior affects applications that use PJSIP DNS resolution. It doesn't affect PJSIP users who utilize an external resolver. This vulnerability is related to...

7.5CVSS0.02108EPSS

Exploits1References8

OSV•added 2022/04/06 2:15 p.m.•3 views

ALPINE-CVE-2022-24793

7.5CVSS7.3AI score0.02108EPSS

Exploits1References1

OSV•added 2022/04/06 2:15 p.m.•3 views

DEBIAN-CVE-2022-24793

7.5CVSS8.4AI score0.02108EPSS

Exploits1References1

NVD•added 2022/04/06 2:15 p.m.•12 views

CVE-2022-24786

PJSIP is a free and open source multimedia communication library written in C. PJSIP versions 2.12 and prior do not parse incoming RTCP feedback RPSI Reference Picture Selection Indication packet, but any app that directly uses pjmediartcpfbparserpsi will be affected. A patch is available in the...

9.8CVSS0.01893EPSS

Exploits0References5

OSV•added 2022/04/06 2:15 p.m.•1 views

DEBIAN-CVE-2022-24786

9.8CVSS8.4AI score0.01893EPSS

Exploits0References1

UbuntuCve•added 2022/04/06 2:15 p.m.•40 views

CVE-2022-24793

7.5CVSS7.3AI score0.02108EPSS

Exploits1References4

UbuntuCve•added 2022/04/06 2:15 p.m.•35 views

CVE-2022-24786

9.8CVSS7.2AI score0.01893EPSS

Exploits0References3

Prion•added 2022/04/06 2:15 p.m.•13 views

Buffer overflow

4.3CVSS7.5AI score0.0233EPSS

Exploits1References7Affected Software2

Prion•added 2022/04/06 2:15 p.m.•21 views

Design/Logic Flaw

7.5CVSS9.4AI score0.01893EPSS

Exploits0References5Affected Software2

OSV•added 2022/04/06 2:15 p.m.•1 views

UBUNTU-CVE-2022-24786

9.8CVSS7.2AI score0.01893EPSS

Exploits0References4

OSV•added 2022/04/06 2:15 p.m.•1 views

UBUNTU-CVE-2022-24793

7.5CVSS7.4AI score0.02108EPSS

Exploits1References5

Vulnrichment•added 2022/04/06 12:0 a.m.•3 views

CVE-2022-24793 Potential heap buffer overflow when parsing DNS packets in PJSIP

7.5CVSS7.6AI score0.02108EPSS

Exploits1References7

CVE•added 2022/04/06 12:0 a.m.•138 views

CVE-2022-24786

CVE-2022-24786 affects PJSIP (PJPROJECT) versions 2.12 and earlier. The root cause is that PJMEDIA RTC PTS/RPSI feedback parsing does not correctly handle RTCP RPSI packets, enabling an impact to applications that directly call pjmedia_rtcp_fb_parse_rpsi(). The issue is documented with a patch av...

9.8CVSS9.4AI score0.01893EPSS

Exploits0References5Affected Software1

CVE•added 2022/04/06 12:0 a.m.•148 views

CVE-2022-24793

CVE-2022-24793 affects PJSIP’s DNS resolver. A buffer overflow is triggered in parsing the query record (parse_rr) for versions ≤ 2.12. A fix exists in the pjproject master branch; a workaround is to disable DNS resolution in PJSIP (set nameserver_count to 0) or use an external resolver. The issu...

7.5CVSS7.6AI score0.02108EPSS

Exploits1References8Affected Software1