mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-13 14:14:44 +02:00
marc
934 B
934 B
CVE-2022-23537
Description
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB. The patch is available as a commit in the master branch (2.13.1).
POC
Reference
No PoCs from references.