CVE-2018-25356 – SIPp

CVSS 8.4 IMPORTANT

“A remote code execution weakness in VoIP testing infrastructure can quickly expose communication systems to attack.”

A patch was released for a high-severity vulnerability affecting SIPp. CVE-2018-25356 has a CVSS score of 8.4, which is High severity.

The vulnerability involves a classic buffer overflow condition that could allow remote code execution in affected SIP testing environments. Public proof-of-concept code is available. The update strengthens memory handling protections and reduces the risk of attackers executing unauthorized code through crafted SIP traffic.

Key Details

Attack Vector: Local
Attack Complexity: Low
Privileges Required: None
User Interaction: None
CWE Classification: CWE-120

Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.

CVE-2018-25356 – SIPp

Key Details

Stay Tuned

PLATFORM

SOLUTIONS

RESOURCES

COMPANY

LEGAL

CONTACTS

+1-346-444-8530

Toll Free: 833-444-8530

708 Main St, 10th FL, Houston, TX 77002