Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

meetecho janus vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2
CVE-2020-13901
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_sdp_merge in sdp.c has a stack-based buffer overflow.
Meetecho Janus
5
CVSSv2
CVE-2020-13898
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_sdp_process in sdp.c has a NULL pointer dereference.
Meetecho Janus
5
CVSSv2
CVE-2020-13899
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_process_incoming_request in janus.c discloses information from uninitialized stack memory.
Meetecho Janus
5
CVSSv2
CVE-2020-13900
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_sdp_preparse in sdp.c has a NULL pointer dereference.
Meetecho Janus
3.5
CVSSv2
CVE-2021-4020
janus-gateway is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Meetecho Janus
7.5
CVSSv2
CVE-2020-14033
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_streaming_rtsp_parse_sdp in plugins/janus_streaming.c has a Buffer Overflow via a crafted RTSP server.
Meetecho Janus
7.5
CVSSv2
CVE-2020-14034
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_get_codec_from_pt in utils.c has a Buffer Overflow via long value in an SDP Offer packet.
Meetecho Janus
4.3
CVSSv2
CVE-2021-4124
janus-gateway is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Meetecho Janus
4
CVSSv2
CVE-2020-10575
An issue exists in Janus up to and including 0.9.1. plugins/janus_videocall.c in the VideoCall plugin mishandles session management because a race condition causes some references to be freed too early or too many times.
Meetecho Janus
4.3
CVSSv2
CVE-2020-10576
An issue exists in Janus up to and including 0.9.1. plugins/janus_voicemail.c in the VoiceMail plugin has a race condition that could cause a server crash.
Meetecho Janus
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook