Vulnerabilities > Freeswitch
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-10-05 | CVE-2015-7392 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Freeswitch 1.2/1.6.0 Heap-based buffer overflow in the parse_string function in libs/esl/src/esl_json.c in FreeSWITCH before 1.4.23 and 1.6.x before 1.6.2 allows remote attackers to execute arbitrary code via a trailing \u in a json string to cJSON_Parse. | 7.5 |
2013-09-30 | CVE-2013-2238 | Buffer Errors vulnerability in Freeswitch 1.2 Multiple buffer overflows in the switch_perform_substitution function in switch_regex.c in FreeSWITCH 1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to the index and substituted variables. | 6.8 |