This page aggregates publicly disclosed CVE and security risk information related to linphone, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-43611 | Belledonne Belle-sip before 5.0.20 can crash applications such as Linphone via " \ " in the display name of a From header. | [email protected] | 7.5 | 0.32% | 2021-11-12 | 2024-11-21 |
| CVE-2021-43610 | Belledonne Belle-sip before 5.0.20 can crash applications such as Linphone via an invalid From header (request URI without a parameter) in an unauthenticated SIP message, a different issue than CVE-2021-33056. | [email protected] | 7.5 | 0.49% | 2021-11-12 | 2024-11-21 |
| CVE-2021-33056 | Belledonne Belle-sip before 4.5.20, as used in Linphone and other products, can crash via an invalid From header in a SIP message. | [email protected] | 7.5 | 0.41% | 2021-08-12 | 2024-11-21 |