Vulnerabilities

Kamailio vulnerable to header smuggling possible due to bypass of remove_hf

September 1, 2020

Posted by Sandro Gauci on Sep 01

# Kamailio vulnerable to header smuggling possible due to bypass of remove_hf

– Fixed versions: Kamailio v5.4.0
– Enable Security Advisory: <https://github.com/EnableSecurity/advisories/tree/master/ES2020-01-kamailio-remove-hf>
– Tested vulnerable versions: 5.3.5 and earlier
– Timeline:
– Report date & issue patched by Kamailio: 2020-07-16
– Kamailio rewrite for header parser (better fix): 2020-07-16 to 2020-07-23
-…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Original Source

Tags: cyber, exploit, full disclosure, OSINT, seclist, Security, threatintel, vulnerabilities, vulnerability, vulns

[QILIN] – Ransomware Victim: Culver’s Lawn & Landscape, Inc[.]

July 14, 2025

[PAYOUTSKING] – Ransomware Victim: T****n

July 14, 2025

[PAYOUTSKING] – Ransomware Victim: G*****

July 14, 2025

CVE Alert: CVE-2025-7514

July 14, 2025

CVE Alert: CVE-2025-7513

July 14, 2025

Original Source

You may have missed

[QILIN] – Ransomware Victim: Culver’s Lawn & Landscape, Inc[.]

[PAYOUTSKING] – Ransomware Victim: T****n

[PAYOUTSKING] – Ransomware Victim: G*****

CVE Alert: CVE-2025-7514

CVE Alert: CVE-2025-7513