PT-2026-35058 · Pjsip · Pjsip
Dhkts1
·
Published
2026-04-24
·
Updated
2026-04-28
·
CVE-2026-41415
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
PJSIP versions prior to 2.17
Description
An out-of-bounds read occurs when parsing a malformed Content-ID URI in a SIP multipart message body. This is caused by insufficient length validation, which allows reads to extend beyond the intended buffer bounds.
Recommendations
Update to version 2.17.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Pjsip