Vulnerabilities > CVE-2021-36513 - Missing Initialization of Resource vulnerability in Signalwire Freeswitch

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
signalwire
CWE-909

Summary

An issue was discovered in function sofia_handle_sip_i_notify in sofia.c in SignalWire freeswitch before 1.10.6, may allow attackers to view sensitive information due to an uninitialized value.

Vulnerable Configurations

Part Description Count
Application
Signalwire
1

Common Weakness Enumeration (CWE)