CVE-2026-39864

Source
https://cve.org/CVERecord?id=CVE-2026-39864
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-39864.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-39864
Aliases
  • GHSA-6m86-m342-g48m
Downstream
Published
2026-04-08T19:58:08.565Z
Modified
2026-07-08T08:13:06.408682118Z
Severity
  • 4.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Kamailio Auth: Processing Vulnerability For Additional Authenticated User Identity Checks
Details

Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.0.5 and 5.8.7, an out-of-bounds read in the auth module of Kamailio (formerly OpenSER and SER) allows remote attackers to cause a denial of service (process crash) via a specially crafted SIP packet if a successful user authentication without a database backend is followed by additional user identity checks. This vulnerability is fixed in 6.0.5 and 5.8.7.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/39xxx/CVE-2026-39864.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-125"
    ]
}
References

Affected packages

Git / github.com/kamailio/kamailio

Affected ranges

Type
GIT
Repo
https://github.com/kamailio/kamailio
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Introduced
Fixed
Database specific
{
    "source": "CPE_RANGE",
    "cpe": "cpe:2.3:a:kamailio:kamailio:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "5.8.7"
        },
        {
            "introduced": "6.0.0"
        },
        {
            "fixed": "6.0.5"
        }
    ]
}

Affected versions

3.*
3.0_pre1
5.*
5.8.0
5.8.1
5.8.2
5.8.3
5.8.4
5.8.5
5.8.6
6.*
6.0.0
6.0.1
6.0.2
6.0.3
6.0.4
Other
after_0_9_4_pkg_merge
after_makefile_merges
after_testing_0_8_12_r0_merge
after_testing_0_8_12_r1_merge
after_xl
before_db_api_changes
before_dest_info_changes_2
before_kill_repl_add_rm
before_lumps_split
before_malloc_changes
before_new_timers
before_replication_patch
before_socket_info_lists
before_str2ip_changes
before_tcp_port_aliases
before_testing_0_8_12_r0_merge
before_testing_0_8_12_r1_merge
before_tm_timers
before_xl
bflmpsvz
bigbang
bogdan_final_version
budvar
fixstats
gpled
ipv4_working
ipv6
last_merge_to_janakj
listen_ifs
mem-fixes
myself_port_lo
new_cfg_compiles
new_hash
new_timers
old_mod_iface
post-zt
pre-bigbang
pre-zt
pre22
pre6-tcp4
pre6-tcp5-tm
pre_fixstats
pregpl
rel_0_8_11_root
rel_0_9_0_root
ser_0-8-6-4
ser_081-plugins
ser_082
ser_0839_errors
ser_0_7
ser_0_8_10
ser_0_8_10_pre2
ser_0_8_10_pre3
ser_0_8_10_pre4
ser_0_8_10_pre5
ser_0_8_3_1
ser_0_8_3_2
ser_0_8_6-5-stable
ser_0_8_6-6-beer-release
ser_0_8_7-0-unstable
ser_0_8_8-final-cd-release
ser_0_8_9
ser_0_8_9-release
sip_083
sip_pre-plugin
sr_before_modules_merge
sr_simpleconfig
srv
tcp2
testing_0_8_12_root
tmp_pcl_tag_17368Js8
v03
v0_2
v0_8_11_pre9
v0_8_11dev34
v0_8_11pre29
v0_8_11pre29-prerelease
v0_8_11pre29-prerelease-cd
v0_8_11pre8
v0_8_12_t02_merged_w_v0_8_11pre35
v0_8_12dev-t03
v0_8_12dev_t05
v0_8_12dev_t13
v0_8_13dev-t16
v0_8_8
wo_sp
sr_3.*
sr_3.1_freeze

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-39864.json"