CVE-2020-28361 – Kamailio before 5.4.0, as used in Sip Express Router (SER) in Sippy Softswitch 4.5 through …

Vuln ID: CVE-2020-28361

Published:  2020-11-18  14:15:12Z

Description: Kamailio before 5.4.0, as used in Sip Express Router (SER) in Sippy Softswitch 4.5 through 5.2 and other products, allows a bypass of a header-removal protection mechanism via whitespace characters. This occurs in the remove_hf function in the Kamailio textops module.

Source: NVD.NIST.GOV