Published: 16/02/2022 Updated: 30/08/2023

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in PJSUA API when calling pjsua_call_dump. An attacker-controlled 'buffer' argument may cause a buffer overflow, since supplying an output buffer smaller than 128 characters may overflow the output buffer, regardless of the 'maxlen' argument supplied

Vulnerable Product	Search on Vulmon	Subscribe to Product
teluu pjsip
debian debian linux 9.0
debian debian linux 10.0
debian debian linux 11.0

Debian Bug report logs - #1014998 ring: CVE-2021-32686 CVE-2021-37706 CVE-2022-21723 CVE-2022-23608 CVE-2021-43299 CVE-2021-43300 CVE-2021-43301 CVE-2021-43302 CVE-2021-43303 CVE-2021-43804 CVE-2021-43845 CVE-2022-21722 CVE-2022-24754 CVE-2022-24763 CVE-2022-24764 CVE-2022-24793 Package: src:ring; Maintainer for src:ring is Debian VoIP Te ...

Multiple security vulnerabilities have been found in Asterisk, an Open Source Private Branch Exchange Buffer overflows and other programming errors could be exploited for information disclosure or the execution of arbitrary code Special care should be taken when upgrading to this new upstream release Some configuration files and options have cha ...

CWE-120 https://github.com/pjsip/pjproject/security/advisories/GHSA-qcvw-h34v-c7r9 https://lists.debian.org/debian-lts-announce/2022/03/msg00035.html https://lists.debian.org/debian-lts-announce/2022/11/msg00021.html https://www.debian.org/security/2022/dsa-5285 https://lists.debian.org/debian-lts-announce/2023/08/msg00038.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014998 https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5285

CVE-2021-43303

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect