Every CVE whose affected-product data names Signalwire Sofia-sip, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-22741 — CVSS 9.8 (critical): Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. In affected versions Sofia-SIP **lacks…
CVE-2022-31003 — CVSS 9.1 (critical): Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent library. Prior to version 1.13.8, when parsing each line of a sdp…
CVE-2022-31001 — CVSS 7.5 (high): Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent library. Prior to version 1.13.8, an attacker can send a message…
CVE-2022-31002 — CVSS 7.5 (high): Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent library. Prior to version 1.13.8, an attacker can send a message…
CVE-2023-32307 — CVSS 7.5 (high): Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. Referring to [GHSA-8599-x7rq-fr54](https…