CyberRota
← Ana sayfaya dön

CVE-2026-49475

HIGH · CVSS 7.5 EPSS %0.28 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-09T17:17:47.390 · Çekilme zamanı: 2026-06-30T12:14:55.885600+00:00

CyberRota Yorumu

Bellek tüketimine neden olabilir.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

GitHub PoC Linkleri
github.com github.com

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-49475
Severity
HIGH
CVSS
7.5
EPSS
%0.28

Orijinal NVD Açıklaması

FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.11.0, a STUN packet whose declared attribute length is shorter than the structure the parser casts to causes the parser to read and write past the end of the attribute, producing an out-of-bounds memory access on the per-leg media buffer. This issue has been patched in version 1.11.0.