NVD Vulnerability Detail

CVE-2020-15260

Summary	PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.10 and earlier, PJSIP transport can be reused if they have the same IP address + port + protocol. However, this is insufficient for secure transport since it lacks remote hostname authentication. Suppose we have created a TLS connection to `sip.foo.com`, which has an IP address `100.1.1.1`. If we want to create a TLS connection to another hostname, say `sip.bar.com`, which has the same IP address, then it will reuse that existing connection, even though `100.1.1.1` does not have certificate to authenticate as `sip.bar.com`. The vulnerability allows for an insecure interaction without user awareness. It affects users who need access to connections to different destinations that translate to the same address, and allows man-in-the-middle attack if attacker can route a connection to another destination such as in the case of DNS spoofing.
Publication Date	March 11, 2021, 8:15 a.m.
Registration Date	March 11, 2021, noon
Last Update	Nov. 21, 2024, 2:05 p.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:teluu:pjsip::::::::			2.10

Related information, measures and tools

No	URL	タグ
1	https://github.com/pjsip/pjproject/commit/67e46c1ac45ad784db5b9080f5ed8b133c122872	Patch Third Party Advisory
2	https://github.com/pjsip/pjproject/commit/67e46c1ac45ad784db5b9080f5ed8b133c122872	Patch Third Party Advisory
3	https://github.com/pjsip/pjproject/pull/2663	Patch Third Party Advisory
4	https://github.com/pjsip/pjproject/pull/2663	Patch Third Party Advisory
5	https://github.com/pjsip/pjproject/security/advisories/GHSA-8hcp-hm38-mfph	Patch Third Party Advisory
6	https://github.com/pjsip/pjproject/security/advisories/GHSA-8hcp-hm38-mfph	Patch Third Party Advisory
7	https://security.gentoo.org/glsa/202107-42	Third Party Advisory
8	https://security.gentoo.org/glsa/202107-42	Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-295	不正な証明書検証	https://cwe.mitre.org/data/definitions/295.html

JVN Vulnerability Information

PJSIP におけるホストの不一致による証明書の検証に関する脆弱性

Title	PJSIP におけるホストの不一致による証明書の検証に関する脆弱性
Summary	PJSIP には、ホストの不一致による証明書の検証に関する脆弱性が存在します。
Possible impacts	情報を改ざんされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	June 25, 2020, midnight
Registration Date	Nov. 29, 2021, 4:49 p.m.
Last Update	Nov. 29, 2021, 4:49 p.m.

Affected System

Teluu Ltd.

PJSIP 2.10 およびそれ以前

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2020-15260	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15260
National Vulnerability Database (NVD)
2	CVE-2020-15260	https://nvd.nist.gov/vuln/detail/CVE-2020-15260

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-297	https://cwe.mitre.org/data/definitions/297.html

ベンダー情報

No	Name	URL
GitHub
1	Existing TLS connections can be reused without checking remote hostname	https://github.com/pjsip/pjproject/security/advisories/GHSA-8hcp-hm38-mfph
2	Fix secure transport checking #2663	https://github.com/pjsip/pjproject/pull/2663
3	Merge pull request from GHSA-8hcp-hm38-mfph	https://github.com/pjsip/pjproject/commit/67e46c1ac45ad784db5b9080f5ed8b133c122872

Change Log

No	Changed Details	Date of change
1	[2021年11月29日] 掲載	Nov. 29, 2021, 4:49 p.m.