Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Buffer Overflow
RCE
Sofia Sip
NVD
GitHub
CVSS 3.1
9.8
EPSS
2.4%