CVE-2026-10629: CWE-346 Origin Validation Error in Verizon VoLTE
SIP signaling stack in Verizon IMS (unspecified version) implements SIP signaling without IPsec integrity protection (missing Security-Client/Security-Server headers and ESP traffic), which allows an on-path attacker to compromise confidentiality, integrity, and authenticity of VoLTE signaling via passive monitoring and active manipulation of unsecured SIP messages over the radio and core network.
AI Analysis
Technical Summary
The vulnerability CVE-2026-10629 affects Verizon's VoLTE SIP signaling stack by lacking IPsec integrity protection mechanisms such as Security-Client/Security-Server headers and ESP traffic. This results in an origin validation error (CWE-346) and insufficient integrity protection (CWE-523), enabling an on-path attacker to intercept and manipulate SIP signaling messages within the IMS network. The vulnerability impacts the confidentiality, integrity, and authenticity of VoLTE signaling communications. No specific affected versions or vendor remediation details have been provided, and no CVSS score is assigned.
Potential Impact
An attacker positioned on the communication path can compromise the confidentiality, integrity, and authenticity of VoLTE signaling messages by exploiting the lack of IPsec integrity protection. This could allow passive monitoring or active manipulation of SIP signaling over the radio and core network, potentially undermining secure voice communication. However, no known exploits have been reported in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory at https://www.kb.cert.org/vuls/id/615987 for current remediation guidance. Until an official fix or mitigation is provided by Verizon or CERT, users should be aware of the risk but no specific mitigation steps are documented.
CVE-2026-10629: CWE-346 Origin Validation Error in Verizon VoLTE
Description
SIP signaling stack in Verizon IMS (unspecified version) implements SIP signaling without IPsec integrity protection (missing Security-Client/Security-Server headers and ESP traffic), which allows an on-path attacker to compromise confidentiality, integrity, and authenticity of VoLTE signaling via passive monitoring and active manipulation of unsecured SIP messages over the radio and core network.
CVSS v3.1
Score 9.1critical
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability CVE-2026-10629 affects Verizon's VoLTE SIP signaling stack by lacking IPsec integrity protection mechanisms such as Security-Client/Security-Server headers and ESP traffic. This results in an origin validation error (CWE-346) and insufficient integrity protection (CWE-523), enabling an on-path attacker to intercept and manipulate SIP signaling messages within the IMS network. The vulnerability impacts the confidentiality, integrity, and authenticity of VoLTE signaling communications. No specific affected versions or vendor remediation details have been provided, and no CVSS score is assigned.
Potential Impact
An attacker positioned on the communication path can compromise the confidentiality, integrity, and authenticity of VoLTE signaling messages by exploiting the lack of IPsec integrity protection. This could allow passive monitoring or active manipulation of SIP signaling over the radio and core network, potentially undermining secure voice communication. However, no known exploits have been reported in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory at https://www.kb.cert.org/vuls/id/615987 for current remediation guidance. Until an official fix or mitigation is provided by Verizon or CERT, users should be aware of the risk but no specific mitigation steps are documented.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- certcc
- Date Reserved
- 2026-06-02T14:31:31.922Z
- Cvss Version
- null
- State
- PUBLISHED
- Remediation Level
- null
- Vendor Advisory Urls
- [{"url":"https://www.kb.cert.org/vuls/id/615987","vendor":"CERT"}]
Threat ID: 6a1efb62e29bf47b50db3486
Added to database: 6/2/2026, 3:48:50 PM
Last enriched: 6/2/2026, 4:19:15 PM
Last updated: 6/3/2026, 5:05:54 AM
Views: 7
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.