CVE-2017-14114

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2017-14114

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-14114.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2017-14114

Downstream

UBUNTU-CVE-2017-14114

Published

2017-09-02T16:29:00.363Z

Modified

2026-04-10T03:55:27.912764Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVSS Calculator

Summary

[none]

Details

RTPproxy through 2.2.alpha.20160822 has a NAT feature that results in not properly determining the IP address and port number of the legitimate recipient of RTP traffic, which allows remote attackers to obtain sensitive information or cause a denial of service (communication outage) via crafted RTP packets.

References

https://rtpbleed.com

Affected packages

Git / github.com/sippy/rtpproxy

Affected ranges

Type

GIT

Repo

https://github.com/sippy/rtpproxy

Events

Introduced

Last affected

029f88a433b87d0a1eb3772208805916c6828076

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2"
        }
    ]
}

Affected versions

2.*

2.0-RC1

Other

RELENG_1_0_BP

RELENG_1_1_BP

V2.*

V2.0-RC1

v1.*

v1.3-beta.1

v2.*

v2.0.0

v2.2.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-14114.json"