CVE-2026-25994 PJSIP has a heap buffer overflow in ICE with long username

PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, a buffer overflow vulnerability exists in PJNATH ICE Session when processing credentials with excessively long usernames...

CVE-2026-25994

CVE-2026-25994 affects PJSIP’s PJNATH ICE Session in 2.16 and earlier. The vulnerability is a buffer overflow triggered when processing credentials with excessively long usernames. According to the description, this can impact confidentiality, integrity, and availability (high impact) and is expl...

CVE-2025-47348 Use of Uninitialized Variable in HLOS

Memory corruption while processing identity credential operations in the trusted application...

CVE-2025-47348

CVE-2025-47348 is a memory corruption vulnerability in Qualcomm chipsets related to identity credential processing in the trusted application. The issue is described as memory corruption during identity credential operations. CVSS v3.1 metrics indicate a HIGH base score (7.8) with local attack ve...

CVE-2014-5233

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism...

CVE-2014-5233

Siemens SIMATIC WinCC Sm@rtClient for iOS (pre-1.0.2) has an information-credential flaw: an error in the credential-processing/handling allows a physically proximate attacker with local access to extract Sm@rtServer credentials. The issue is tied to the app’s credential-storage/processing mechan...