Lucene search
Veracode Vulnerability DatabaseVERACODE:38554HistoryDec 21, 2022 - 6:48 a.m.
Heap-Based Buffer Overflow
2022-12-2106:48:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
20
libpjsip.so
buffer overflow
stun parsing
pjnath
pjsua-lib
software vulnerability
EPSS
0.002
Percentile
57.2%
libpjsip.so is vulnerable to heap-based buffer overflow. An attacker is able to cause buffer overread by parsing a specially crafted STUN message with unknown attribute via multiple functions. This only affects applications using STUN including PJNATH and PJSUA-LIB.
Related
ubuntucve
ubuntucve
CVE-2022-23537
2022-12-20 00:00:00
debiancve
debiancve
CVE-2022-23537
2022-12-20 19:15:24
cvelist
cvelist
nvd
nvd
CVE-2022-23537
2022-12-20 19:15:24
alpinelinux
alpinelinux
CVE-2022-23537
2022-12-20 19:15:24
prion
prion
Design/Logic Flaw
2022-12-20 19:15:00
cve
cve
CVE-2022-23537
2022-12-20 19:15:24
redos
redos
ROS-20221227-02
2022-12-27 00:00:00
osv
osv
CVE-2022-23547
2022-12-23 15:15:14
CVE-2022-23537
2022-12-20 19:15:24
asterisk - security update
2023-02-23 00:00:00
debian
debian
[SECURITY] [DLA 3335-1] asterisk security update
2023-02-22 22:36:41
[SECURITY] [DSA 5358-1] asterisk security update
2023-02-23 09:14:43
[SECURITY] [DLA 3549-1] ring security update
2023-08-29 21:15:19
openvas
openvas
Debian: Security Advisory (DSA-5358-1)
2023-02-24 00:00:00
Debian: Security Advisory (DLA-3335-1)
2023-02-23 00:00:00
Ubuntu: Security Advisory (USN-6422-2)
2023-10-25 00:00:00
nessus
nessus
Debian DLA-3335-1 : asterisk - LTS security update
2023-02-24 00:00:00
Debian DSA-5358-1 : asterisk - security update
2023-02-24 00:00:00
Debian DLA-3549-1 : ring - LTS security update
2023-08-30 00:00:00
ubuntu
ubuntu
Ring vulnerabilities
2023-10-09 00:00:00
Ring vulnerabilities
2023-10-24 00:00:00