CVE-2026-25994 – PJSIP has a heap buffer overflow in ICE with long username

CVE ID : CVE-2026-25994

Published : Feb. 11, 2026, 9:16 p.m. | 1 hour, 8 minutes ago

Description : PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, a buffer overflow vulnerability exists in PJNATH ICE Session when processing credentials with excessively long usernames.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…