Lucene search
K

14783 matches found

NVD
NVD
added 2026/02/20 1:15 a.m.5 views

CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS0.0029EPSS
Exploits0References2
OSV
OSV
added 2026/02/20 1:15 a.m.8 views

ALPINE-CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

5.3CVSS5.7AI score0.0029EPSS
Exploits0References1
OSV
OSV
added 2026/02/20 1:15 a.m.4 views

DEBIAN-CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

5.3CVSS5.6AI score0.0029EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/02/20 1:15 a.m.5 views

CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS6AI score0.0029EPSS
Exploits0References3
OSV
OSV
added 2026/02/20 1:15 a.m.3 views

UBUNTU-CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS6AI score0.0029EPSS
Exploits0References4
CVE
CVE
added 2026/02/20 12:26 a.m.36 views

CVE-2026-26967

PJSIP Vulnerability CVE-2026-26967: In 2.16 and earlier, the H.264 unpacketizer can overflow the heap when processing malformed SRTP packets, due to reading a 2-byte NAL unit size without validating bounds within the payload. Affected: PJSIP-based applications handling H.264 video streams. Impact...

9.3CVSS5.8AI score0.0029EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/02/20 12:26 a.m.5 views

CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS5.6AI score0.0029EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/02/20 12:26 a.m.5 views

CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS5.6AI score0.0029EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.8 views

Silicon Labs Simplicity SDK 安全漏洞

Silicon Labs Simplicity SDK is a core software development kit provided by Silicon Labs, Inc. in the United States. The Silicon Labs Simplicity SDK has a security vulnerability that stems from integer underflow, which may lead to excessive buffer reads through specially crafted data packets...

2.4CVSS5.9AI score0.00167EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/20 12:0 a.m.6 views

PT-2026-20971

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS5.8AI score0.0029EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.8 views

PJSIP 安全漏洞

PJSIP is an open-source, free and open-source multimedia communication library developed in C language. It implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Versions of PJSIP 2.16 and earlier contained security vulnerabilities, which stemmed from a heap buffer...

9.3CVSS6.5AI score0.0029EPSS
Exploits0References2
NVD
NVD
added 2026/02/19 9:18 p.m.4 views

CVE-2026-2738

Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet...

6.8CVSS0.00115EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/19 8:0 p.m.3 views

CVE-2026-2738

Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet...

6.8CVSS5.6AI score0.00115EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/19 8:0 p.m.3 views

CVE-2026-2738

Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet...

6.8CVSS5.6AI score0.00115EPSS
Exploits0References1
CVE
CVE
added 2026/02/19 8:0 p.m.11 views

CVE-2026-2738

CVE-2026-2738 affects OpenVPN ovpn-dco-win 2.8.0. A buffer overflow in the handling of encrypted packets can be triggered by sending oversized packets to the remote peer when the AEAD tag appears at the end of the packet, enabling a local attacker to crash the system. The CVSS 4.0 vector indicate...

6.8CVSS5.6AI score0.00115EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.6 views

PT-2026-20934

Buffer overflow in ovpn‑dco‑win version 2.8.0 allows local attackers to cause a system crash by sending too large packets to the remote peer when the AEAD tag appears at the end of the encrypted packet...

6.8CVSS5.6AI score0.00115EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.13 views

OpenVPN ovpn-dco-win 安全漏洞

OpenVPN ovpn-dco-win is a virtual network adapter for Windows developed by OpenVPN. Version 2.8.0 of OpenVPN ovpn-dco-win contains a security vulnerability. This vulnerability arises when AEAD tags appear at the end of encrypted packets, and sending excessively large packets to remote peers may...

6.8CVSS6AI score0.00115EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/19 12:0 a.m.4 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : FRR vulnerabilities (USN-8046-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8046-1 advisory. It was discovered that FRR incorrectly handled certain malformed OSPF and update packets. A remote attacker could possibly use these...

7.5CVSS5.7AI score0.00582EPSS
Exploits9References10
OpenVAS
OpenVAS
added 2026/02/19 12:0 a.m.7 views

Ubuntu: Security Advisory (USN-8046-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.5AI score0.00582EPSS
Exploits9References2
OSV
OSV
added 2026/02/18 2:47 p.m.12 views

CLSA-2026-1771241609 kernel: Fix of 13 CVEs

vsock: Do not allow binding to VMADDRPORTANY CVE-2025-38618 - cnic: Fix use-after-free bugs in cnicdeletetask CVE-2025-39945 - scsi: bfa: Double-free fix CVE-2025-38699 - pptp: ensure minimal skb length in pptpxmit CVE-2025-38574 - ipv6: reject malicious packets in ipv6gsosegment CVE-2025-38572 -...

7.8CVSS7AI score0.00295EPSS
Exploits0References1
Rows per page
Query Builder