Security Advisories

Published security advisories covering vulnerabilities in VoIP, WebRTC, and telecommunications software by Enable Security.

security advisories

Dec 17, 2025

SIPGO: Response DoS vulnerability via nil pointer dereference High 8.7

CVE-2025-68274 sipgo denial of service

Jul 31, 2025

rtpengine: RTP Inject and RTP Bleed vulnerabilities despite proper configuration Critical 9.3

CVE-2025-53399 rtpengine owasp

Dec 22, 2023

FreeSWITCH: denial of service via DTLS Hello packets during call initiation High 7.5

CVE-2023-51443 freeswitch denial of service

Dec 15, 2023

rtpengine: denial of service via DTLS Hello packets during call initiation High 7.5

CVE-2023-51275 rtpengine denial of service

Dec 15, 2023

Asterisk: denial of service via DTLS Hello packets during call initiation High 7.5

CVE-2023-49786 asterisk denial of service

Oct 25, 2021

FreeSWITCH: unauthenticated SIP SUBSCRIBE requests by default Medium 5.3

CVE-2021-41157 freeswitch

Oct 25, 2021

FreeSWITCH: unauthenticated SIP MESSAGE requests allow spam and spoofing High 7.5

CVE-2021-37624 freeswitch

Oct 25, 2021

FreeSWITCH: SIP digest leak for configured gateways High 7.5

CVE-2021-41158 freeswitch owasp

Oct 25, 2021

FreeSWITCH: denial of service via SIP flooding High 7.5

CVE-2021-41145 freeswitch denial of service

Oct 25, 2021

FreeSWITCH: denial of service via invalid SRTP packets High 7.5

CVE-2021-41105 freeswitch denial of service