CVE-2020-15472

Published July 1st, 2020

View on NVD ↗

CVSS v3

9.1

CRITICAL

CVSS v2

6.4

MEDIUM

Affected

PROJECT

Description

In nDPI through 3.2, the H.323 dissector is vulnerable to a heap-based buffer over-read in ndpi_search_h323 in lib/protocols/h323.c, as demonstrated by a payload packet length that is too short.

ntop/nDPI

Open Source Deep Packet Inspection Software Toolkit

GitHub

4.48K