CVE-2026-0710

{"id": "CVE-2026-0710", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "patrick@puiterwijk.org", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.5}]}, "published": "2026-01-23T04:16:01.860", "references": [{"url": "https://access.redhat.com/security/cve/CVE-2026-0710", "source": "patrick@puiterwijk.org"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427788", "source": "patrick@puiterwijk.org"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Secondary", "source": "patrick@puiterwijk.org", "description": [{"lang": "en", "value": "CWE-476"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in SIPp. A remote attacker could exploit this by sending specially crafted Session Initiation Protocol (SIP) messages during an active call. This vulnerability, a NULL pointer dereference, can cause the application to crash, leading to a denial of service. Under specific conditions, it may also allow an attacker to execute unauthorized code, compromising the system's integrity and availability."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en SIPp. Un atacante remoto podr\u00eda explotar esto enviando mensajes del Protocolo de Iniciaci\u00f3n de Sesi\u00f3n (SIP) especialmente dise\u00f1ados durante una llamada activa. Esta vulnerabilidad, una desreferencia de puntero NULL, puede provocar el bloqueo de la aplicaci\u00f3n, lo que lleva a una denegaci\u00f3n de servicio. Bajo condiciones espec\u00edficas, tambi\u00e9n podr\u00eda permitir a un atacante ejecutar c\u00f3digo no autorizado, comprometiendo la integridad y disponibilidad del sistema."}], "lastModified": "2026-04-15T00:35:42.020", "sourceIdentifier": "patrick@puiterwijk.org"}