Nanangizz

**Name of the Vulnerable Software and Affected Versions** PJSIP versions prior to 2.13.1 **Description** The issue is related to a buffer overread that can occur when parsing a specially crafted STUN message with an unknown attribute. This can affect applications that use STUN, including PJNATH and PJSUA-LIB. Exploitation of this issue may allow a remote attacker to send a specially crafted STUN message, causing a heap buffer overflow and potentially allowing the execution of arbitrary code on the target system. **Recommendations** For versions prior to 2.13.1, update to version 2.13.1 or later to resolve the issue. As a temporary workaround, consider restricting the handling of STUN messages with unknown attributes until a patch is applied.