CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

Tenable Nessus•added 2026/04/09 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-39864

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.0.5 and 5.8.7, an out-of- bounds read in the auth module of Kamailio formerly...

4.9CVSS5.9AI score0.00301EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-35337

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00609EPSS

Exploits1References1

NVD•added 2024/05/29 7:15 p.m.•8 views

CVE-2024-35434

Irontec Sngrep v1.8.1 was discovered to contain a heap buffer overflow via the function rtpcheckpacket at /sngrep/src/rtp.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted SIP packet...

7.5CVSS7.2AI score0.00609EPSS

Exploits1References1

Vulnrichment•added 2024/05/29 7:6 p.m.•12 views

CVE-2024-35434

7.5AI score0.00609EPSS

Exploits1References1

Cvelist•added 2024/05/29 7:6 p.m.•15 views

CVE-2024-35434

7.2AI score0.00609EPSS

Exploits1References1

CNNVD•added 2024/05/29 12:0 a.m.•4 views

Irontec Sngrep 安全漏洞

Irontec Sngrep is a tool from Irontec for displaying SIP call message streams from endpoints. A security vulnerability exists in Irontec Sngrep version v1.8.1, which originates from a heap buffer overflow in the rtpcheckpacket function on /sngrep/src/rtp.c, which allows an attacker to trigger a...

7.5CVSS6.7AI score0.00609EPSS

Exploits1References2

OSV•added 2023/08/28 12:15 p.m.•4 views

CVE-2023-26095

ASQ in Stormshield Network Security SNS 4.3.15 before 4.3.16 and 4.6.x before 4.6.3 allows a crash when analysing a crafted SIP packet...

7.5CVSS5.8AI score0.00611EPSS

Exploits0References1

NVD•added 2022/08/01 12:15 p.m.•21 views

CVE-2022-27255

In Realtek eCos RSDK 1.5.7p1 and MSDK 4.9.4p1, the SIP ALG function that rewrites SDP data has a stack-based buffer overflow. This allows an attacker to remotely execute code without authentication via a crafted SIP packet that contains malicious SDP data...

9.8CVSS0.3708EPSS

Exploits2References2

OpenVAS•added 2014/07/17 12:0 a.m.•26 views

Juniper Networks Junos OS SIP ALG Denial of Service Vulnerability

DoS on SRX devices when SIP ALG is enabled SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos"; if description...

7.8CVSS5.1AI score0.01799EPSS

Exploits0References2

Prion•added 2012/03/01 1:55 a.m.•19 views

Code injection

Cisco TelePresence Video Communication Server with software before X7.0.1 allows remote attackers to cause a denial of service device crash via a crafted SIP packet, as demonstrated by a SIP INVITE message from a Tandberg device, aka Bug ID CSCtq73319...

7.5CVSS7AI score0.01323EPSS

Exploits0References1Affected Software1

CVE•added 2012/03/01 1:0 a.m.•51 views

CVE-2012-0331

CVE-2012-0331 affects Cisco TelePresence Video Communication Server (all three variants: Control, Expressway, Starter Pack Express) prior to X7.0.1. A crafted SIP packet (e.g., SIP INVITE from a Tandberg device) could crash the affected device, causing a denial-of-service condition. The vulnerabi...

7.5CVSS6.7AI score0.01323EPSS

Exploits0References1Affected Software2

Prion•added 2007/04/24 5:19 p.m.•15 views

Heap overflow

Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via a "crafted SIP packet when initializing an audio/video conference"...

10CVSS8AI score0.10187EPSS

Exploits0References9Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by