CVE-2026-34235: CWE-125: Out-of-bounds Read in pjsip pjproject
PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, a heap out-of-bounds read vulnerability exists in PJSIP's VP9 RTP unpacketizer that occurs when parsing crafted VP9 Scalability Structure (SS) data. Insufficient bounds checking on the payload descriptor length may cause reads beyond the allocated RTP payload buffer. This issue has been patched in version 2.17. A workaround for this issue involves disabling VP9 codec if not needed.
AI Analysis
Technical Summary
PJSIP pjproject versions before 2.17 contain a heap out-of-bounds read vulnerability (CWE-125) in the VP9 RTP unpacketizer component. The vulnerability arises from improper bounds checking when parsing the VP9 Scalability Structure data in RTP payloads, allowing reads beyond the allocated buffer. This flaw can lead to potential memory disclosure or application instability. The vulnerability is addressed in pjproject version 2.17. Disabling the VP9 codec serves as a temporary mitigation if upgrading is not immediately possible.
Potential Impact
The vulnerability allows an attacker to cause out-of-bounds reads on the heap, which may lead to information disclosure or application crashes. There is no indication of remote code execution or privilege escalation. The CVSS 4.0 base score is 6.9 (medium severity), reflecting network attack vector with no privileges or user interaction required, and limited impact on availability.
Mitigation Recommendations
Upgrade pjproject to version 2.17 or later where this vulnerability is patched. If upgrading is not feasible immediately, disable the VP9 codec to mitigate the risk. No other vendor advisories or patches are indicated, so check the official pjproject releases for confirmation and updates.
CVE-2026-34235: CWE-125: Out-of-bounds Read in pjsip pjproject
Description
PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, a heap out-of-bounds read vulnerability exists in PJSIP's VP9 RTP unpacketizer that occurs when parsing crafted VP9 Scalability Structure (SS) data. Insufficient bounds checking on the payload descriptor length may cause reads beyond the allocated RTP payload buffer. This issue has been patched in version 2.17. A workaround for this issue involves disabling VP9 codec if not needed.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
PJSIP pjproject versions before 2.17 contain a heap out-of-bounds read vulnerability (CWE-125) in the VP9 RTP unpacketizer component. The vulnerability arises from improper bounds checking when parsing the VP9 Scalability Structure data in RTP payloads, allowing reads beyond the allocated buffer. This flaw can lead to potential memory disclosure or application instability. The vulnerability is addressed in pjproject version 2.17. Disabling the VP9 codec serves as a temporary mitigation if upgrading is not immediately possible.
Potential Impact
The vulnerability allows an attacker to cause out-of-bounds reads on the heap, which may lead to information disclosure or application crashes. There is no indication of remote code execution or privilege escalation. The CVSS 4.0 base score is 6.9 (medium severity), reflecting network attack vector with no privileges or user interaction required, and limited impact on availability.
Mitigation Recommendations
Upgrade pjproject to version 2.17 or later where this vulnerability is patched. If upgrading is not feasible immediately, disable the VP9 codec to mitigate the risk. No other vendor advisories or patches are indicated, so check the official pjproject releases for confirmation and updates.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-03-26T16:22:29.034Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 69cbedf2e6bfc5ba1d2480fd
Added to database: 3/31/2026, 3:53:22 PM
Last enriched: 4/7/2026, 11:59:26 PM
Last updated: 5/16/2026, 8:01:53 AM
Views: 85
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.