Vulnerabilities > Linphone

DATE CVE VULNERABILITY TITLE RISK
2021-11-12 CVE-2021-43610 HTTP Request Smuggling vulnerability in Linphone Belle-Sip
Belledonne Belle-sip before 5.0.20 can crash applications such as Linphone via an invalid From header (request URI without a parameter) in an unauthenticated SIP message, a different issue than CVE-2021-33056.
network
low complexity
linphone CWE-444
7.5
2021-11-12 CVE-2021-43611 Improper Resource Shutdown or Release vulnerability in Linphone Belle-Sip
Belledonne Belle-sip before 5.0.20 can crash applications such as Linphone via " \ " in the display name of a From header.
network
low complexity
linphone CWE-404
7.5
2021-08-12 CVE-2021-33056 HTTP Request Smuggling vulnerability in Linphone Belle-Sip
Belledonne Belle-sip before 4.5.20, as used in Linphone and other products, can crash via an invalid From header in a SIP message.
network
low complexity
linphone CWE-444
7.5