Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

pjproject — Vulnerabilities & Security Advisories 36

All 36 CVE vulnerabilities found in pjproject, with AI-generated Chinese analysis, references, and POCs.

Vendor: pjsip

CVE IDTitleCVSSSeverityPublished
CVE-2026-41416 PJSIP: Asymmetric ptime integer overflow in Media Stream CWE-190 7.5AIHighAI2026-04-24
CVE-2026-41415 PJSIP: SIP Multipart CID URI Length Underflow CWE-125 9.1AICriticalAI2026-04-24
CVE-2026-40892 PJSIP: Stack buffer overflow in pjsip_auth_create_digest2() CWE-121 9.8AICriticalAI2026-04-21
CVE-2026-40614 PJSIP: Heap buffer overflow in Opus codec decoding CWE-122 7.5AIHighAI2026-04-21
CVE-2026-34235 PJSIP: Heap OOB read in VPX unpacketizer CWE-125 9.1AICriticalAI2026-03-31
CVE-2026-33069 PJSIP has an Out-of-bounds Read in SIP multipart parsing CWE-125 9.1 -2026-03-20
CVE-2026-32945 PJSIP is vulnerable to Heap-based Buffer Overflow through DNS parser CWE-122 9.1 -2026-03-20
CVE-2026-32942 PJSIP has ICE session use-after-free race conditions CWE-416 8.1 -2026-03-20
CVE-2026-28799 PJSIP: Heap use-after-free in PJSIP presence subscription termination handler CWE-416 9.8 -2026-03-06
CVE-2026-29068 PJSIP: Stack buffer overflow in Opus codec parser CWE-121 7.5 -2026-03-06
CVE-2026-26967 PJSIP has a Heap-based Buffer Overflow vulnerability in its H.264 unpacketizer CWE-122 9.8 -2026-02-20
CVE-2026-25994 PJSIP has a heap buffer overflow in ICE with long username CWE-120 9.8AICriticalAI2026-02-11
CVE-2025-65102 PJSIP is vulnerable to buffer overflow in Opus PLC CWE-120 6.5 -2025-11-21
CVE-2023-38703 PJSIP has use-after-free vulnerability in SRTP media transport CWE-416 9.8 Critical2023-10-06
CVE-2023-27585 PJSIP 安全漏洞 CWE-122 7.5 High2023-03-14
CVE-2022-23547 Heap buffer overflow in pjproject when decoding STUN message CWE-122 6.5 Medium2022-12-23
CVE-2022-23537 PJSIP vulnerable to heap buffer overflow when decoding STUN message CWE-122 6.5 Medium2022-12-20
CVE-2022-39269 Media transport downgrade from the secure version (SRTP) to non-secure (RTP) in pjsip CWE-319 9.1 Critical2022-10-06
CVE-2022-39244 Buffer overflow in pjlib scanner and pjmedia CWE-120 7.5 High2022-10-06
CVE-2022-31031 Potential stack buffer overflow when parsing message as a STUN client CWE-120 9.8 Critical2022-06-07
CVE-2022-24792 Potential infinite loop when parsing WAV format file in PJSIP CWE-835 7.5 High2022-04-25
CVE-2022-24793 Potential heap buffer overflow when parsing DNS packets in PJSIP CWE-120 7.5 High2022-04-06
CVE-2022-24786 Potential out-of-bound read/write in PJSIP CWE-125 9.8 Critical2022-04-06
CVE-2022-24763 Infinite Loop in PJSIP CWE-835 7.5 High2022-03-30
CVE-2022-24764 Stack buffer overflow in pjproject CWE-120 7.5 High2022-03-22
CVE-2022-24754 Buffer overflow in pjsip CWE-120 8.5 High2022-03-11
CVE-2022-23608 Use after free in PJSIP CWE-416 8.1 High2022-02-22
CVE-2022-21723 Out-of-bounds read in multipart parsing in PJSIP CWE-125 9.1 Critical2022-01-27
CVE-2022-21722 Potential out-of-bound read during RTP/RTCP parsing in PJSIP CWE-125 9.1 Critical2022-01-27
CVE-2021-41141 Missing release of locks in PJSIP CWE-667 5.9 Medium2022-01-04

All 36 known CVE vulnerabilities affecting pjproject with full Chinese analysis, references, and POCs where available.