CVE-2017-14114

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2017-14114

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-14114.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2017-14114

Downstream

UBUNTU-CVE-2017-14114

Published

2017-09-02T16:29:00Z

Modified

2025-04-20T03:42:28.307835Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVSS Calculator

Summary

[none]

Details

RTPproxy through 2.2.alpha.20160822 has a NAT feature that results in not properly determining the IP address and port number of the legitimate recipient of RTP traffic, which allows remote attackers to obtain sensitive information or cause a denial of service (communication outage) via crafted RTP packets.

References

https://rtpbleed.com

Affected packages

Git / github.com/sippy/rtpproxy

Affected ranges

Type: GIT
Repo: https://github.com/sippy/rtpproxy
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

029f88a433b87d0a1eb3772208805916c6828076

Affected versions

2.*

2.0-RC1

Other

RELENG_1_0_BP

RELENG_1_1_BP

sessinfo_ng_is_coming

V2.*

V2.0-RC1

v1.*

v1.3-beta.1

v2.*

v2.0.0

v2.2.0