CVE-2026-40614 | pjsip pjproject up to 2.16 codec_parse dec_frame[].buf heap-based overflow

April 21, 2026 Yanac

A vulnerability classified as critical was found in pjsip pjproject up to 2.16. This impacts the function codec_parse. The manipulation of the argument dec_frame[].buf results in heap-based buffer overflow.

This vulnerability is cataloged as CVE-2026-40614. The attack must be initiated from a local position. There is no exploit available.VulDB Recent EntriesRead More

CVE-2026-40865 | horilla-opensource horilla 1.5.0 HR File access control
CVE-2026-41192 | freescout-help-desk freescout up to 1.8.214 Attachment::deleteByIds attachments_all[] authorization (GHSA-cv36-2j23-x6g3)