📦

webrtc

Vendor: webrtc_project

Actively Exploited 1 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 6 Total Indexed

Avg. EPSS 0.72% Exploit Prob.

Latest CVE CVE-2022-2294 Jul 28

Security Vulnerability Index

Page 1 / 1

8.8 CVSS

CVE-2022-2294

Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

EPSS: 1.50%

Severity: HIGH

Jul 28, 2022

5.3 CVSS

CVE-2021-28681

Pion WebRTC before 3.0.15 didn't properly tear down the DTLS Connection when certificate verification failed. The PeerConnectionState was set to failed, but a user could ignore that and continue to use the PeerConnection. )A WebRTC implementation shouldn't allow the user to continue if verification has failed.)

EPSS: 0.10%

Severity: MEDIUM

Mar 18, 2021

5.5 CVSS

CVE-2016-1976

Use-after-free vulnerability in the DesktopDisplayDevice class in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

EPSS: 0.69%

Severity: MEDIUM

Mar 13, 2016

6.3 CVSS

CVE-2016-1975

Multiple race conditions in dom/media/systemservices/CamerasChild.cpp in the WebRTC implementation in Mozilla Firefox before 45.0 on Windows might allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

EPSS: 0.59%

Severity: MEDIUM

Mar 13, 2016

Displaying 4 of 6 Total Entries

Total 1 Sections