Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Kamailio before 5.4.0, as used in Sip Express Router (SER) in Sippy Softswitch 4.5 through 5.2 and other products, allows a bypass of a header-removal protection mechanism via whitespace characters. This occurs in the remove_hf function in the Kamailio textops module. Particular use of remove_hf in Sippy Softswitch may allow skilled attacker having a valid credential in the system to disrupt internal call start/duration accounting mechanisms leading potentially to a loss of revenue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fhg Fokus Kamailio 环境问题漏洞
Vulnerability Description
Fhg Fokus Kamailio是德国Fhg Fokus研究院的一个开源的Sip服务器。该服务器主要支持IP电话服务。 Kamailio 5.4.0 之前版本存在安全漏洞,该漏洞源于允许通过空格字符绕过头删除保护机制。这发生在Kamailio textops module的remove_hf函数。
CVSS Information
N/A
Vulnerability Type
N/A