CVE-2017-14114

Source
https://nvd.nist.gov/vuln/detail/CVE-2017-14114
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-14114.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-14114
Related
Published
2017-09-02T16:29:00Z
Modified
2025-04-20T03:42:28.307835Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVSS Calculator
Summary
[none]
Details

RTPproxy through 2.2.alpha.20160822 has a NAT feature that results in not properly determining the IP address and port number of the legitimate recipient of RTP traffic, which allows remote attackers to obtain sensitive information or cause a denial of service (communication outage) via crafted RTP packets.

References

Affected packages

Git / github.com/sippy/rtpproxy

Affected ranges

Type
GIT
Repo
https://github.com/sippy/rtpproxy
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected

Affected versions

2.*

2.0-RC1

Other

RELENG_1_0_BP
RELENG_1_1_BP
sessinfo_ng_is_coming

V2.*

V2.0-RC1

v1.*

v1.3-beta.1

v2.*

v2.0.0
v2.2.0