Browse all 3 CVE security advisories affecting irontec. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Irontec develops secure communication solutions, primarily focusing on VoIP and telephony systems. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and authentication flaws. While no major public security incidents have been widely documented, their CVE history indicates persistent security challenges in web interfaces and API endpoints. The company typically addresses vulnerabilities through timely patches, though their track record suggests a need for stronger security-by-design principles in development processes. Their solutions remain in use across various industries, requiring ongoing vigilance from security teams monitoring their deployments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-3120 | Stack-Buffer Overflow in 'Content-Length' and 'Warning' Header Processing in sngrep — sngrepCWE-120 | 9.0 | Critical | 2024-04-09 |
| CVE-2024-3119 | Stack-Buffer Overflow in 'Call-ID' and 'X-Call-ID' SIP Header Processing in sngrep — sngrepCWE-120 | 9.0 | Critical | 2024-04-09 |
| CVE-2015-10084 | irontec klear-library BaseController.php _prepareWhere sql injection — klear-libraryCWE-89 | 5.5 | Medium | 2023-02-21 |
This page lists every published CVE security advisory associated with irontec. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.