CVE-2022-23537 in PJSIPИнформация

Сводка

по MITRE • 20.12.2022

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB. The patch is available as a commit in the master branch (2.13.1).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Ответственный

GitHub, Inc.

Резервировать

19.01.2022

Раскрытие

20.12.2022

Модерация

принято

Вход

VDB-216370

EPSS

0.01026

KEV

Нет

Деятельности

Очень низкий

Источники

Might our Artificial Intelligence support you?

Check our Alexa App!