Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
meetecho janus vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-13898
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_sdp_process in sdp.c has a NULL pointer dereference.
Meetecho Janus
1 Github repository
6.1
CVSSv3
CVE-2021-4124
janus-gateway is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Meetecho Janus
4.2
CVSSv3
CVE-2020-10575
An issue exists in Janus up to and including 0.9.1. plugins/janus_videocall.c in the VideoCall plugin mishandles session management because a race condition causes some references to be freed too early or too many times.
Meetecho Janus
7.5
CVSSv3
CVE-2020-13900
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_sdp_preparse in sdp.c has a NULL pointer dereference.
Meetecho Janus
1 Github repository
4.8
CVSSv3
CVE-2020-10577
An issue exists in Janus up to and including 0.9.1. janus.c has multiple concurrent threads that misuse the source property of a session, leading to a race condition when claiming sessions.
Meetecho Janus
7.5
CVSSv3
CVE-2020-10573
An issue exists in Janus up to and including 0.9.1. janus_audiobridge.c has a double mutex unlock when listing private rooms in AudioBridge.
Meetecho Janus
9.8
CVSSv3
CVE-2020-13901
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_sdp_merge in sdp.c has a stack-based buffer overflow.
Meetecho Janus
1 Github repository
9.8
CVSSv3
CVE-2020-14033
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_streaming_rtsp_parse_sdp in plugins/janus_streaming.c has a Buffer Overflow via a crafted RTSP server.
Meetecho Janus
5.4
CVSSv3
CVE-2021-4020
janus-gateway is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Meetecho Janus
7.5
CVSSv3
CVE-2020-13899
An issue exists in janus-gateway (aka Janus WebRTC Server) up to and including 0.10.0. janus_process_incoming_request in janus.c discloses information from uninitialized stack memory.
Meetecho Janus
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »