CVE Database · CVE-2025-21487
CVSS v3.1
8.2
EPSS
0.24%
Published
Sep 24, 2025
Modified
Nov 28, 2025
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:LWeaknesses (CWE)
Affected Products (454)
References (1)
...and 404 more