CVE-2021-33056

HIGH

Belle-sip < 4.5.20 - Denial of Service via Invalid From Header

Title source: llm

Belledonne Belle-sip before 4.5.20, as used in Linphone and other products, can crash via an invalid From header in a SIP message.

Core 2

Core References

Patch, Third Party Advisory x_refsource_misc

Patch, Third Party Advisory x_refsource_confirm

CVSS v3 7.5

EPSS 0.0129

EPSS Percentile 66.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-444

Status published

Products (1)

linphone/belle-sip < 4.5.20

Published Aug 12, 2021

Tracked Since Feb 18, 2026