Heap-Based Buffer Over-Read Vulnerability in drachtio-server before 0.8.19

Heap-Based Buffer Over-Read Vulnerability in drachtio-server before 0.8.19

CVE-2022-45909 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

drachtio-server before 0.8.19 has a heap-based buffer over-read via a long Request-URI in an INVITE request.

Learn more about our Cis Benchmark Audit For Server Software.