CVE-2024-3119

EPSS 1.9%
Veröffentlicht 10.04.2024 00:15:12
Zuletzt bearbeitet 03.02.2025 17:43:02
Quelle 41c37e40-543d-43a2-b660-2fee83
CVE-Watchlists
Login
Unerledigt
Login

A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper handling of 'Call-ID' and 'X-Call-ID' SIP headers. The functions sip_get_callid and sip_get_xcallid in sip.c use the strncpy function to copy header contents into fixed-size buffers without checking the data length. This flaw allows remote attackers to execute arbitrary code or cause a denial of service (DoS) through specially crafted SIP messages.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Irontec ≫ Sngrep Version >= 0.4.2 < 1.8.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.9%	0.827

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
41c37e40-543d-43a2-b660-2fee83ea851a	9	2.2	6	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://github.com/irontec/sngrep/pull/480/commits/73c15c82d14c69df311e05fa75da734faafd365f

Patch

https://github.com/irontec/sngrep/releases/tag/v1.8.1

Release Notes

https://pentraze.com/vulnerability-reports/

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-3119

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-3119

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-3119

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-3119