Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Crash in receiving updated SDP answer after initial SDP negotiation failed
Vulnerability Description
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earlier, after an initial INVITE has been sent, when two 183 responses are received, with the first one causing negotiation failure, a crash will occur. This results in a denial of service.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Sauwming pjproject 代码问题漏洞
Vulnerability Description
Sauwming pjproject是 Sauwming开源的一个应用软件。将信令协议(SIP)与丰富的多媒体框架和NAT遍历功能结合在一起,成为可移植的高级API,适用于从台式机,嵌入式系统到手机等几乎所有类型的系统。 Sauwming pjproject 2.10 版本及之前版本存在代码问题漏洞,攻击者可利用该漏洞导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A