CVE-2026-1110
Unknown Unknown - Not Provided
Buffer Overflow in cijliu librtsp rtsp_parse_method Function

Publication date: 2026-01-18

Last updated on: 2026-04-29

Assigner: VulDB

Description
A flaw has been found in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10fde13b04. This affects the function rtsp_parse_method. This manipulation causes buffer overflow. It is possible to launch the attack on the local host. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-18
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2026-01-18
EPSS Evaluated
2026-06-15
NVD
CVE-2026-1110
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
cijliu librtsp to 2021-03-14 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-119 The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
CWE-120 The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-1110 is a buffer overflow vulnerability in the function rtsp_parse_method of the cijliu librtsp library. The flaw occurs because the input buffer is copied to an output buffer without verifying that the input size fits, leading to a classic buffer overflow (CWE-120). This can be exploited locally by an attacker to manipulate the system. [2, 3]

Impact Analysis

This vulnerability can impact the confidentiality, integrity, and availability of the affected system. An attacker with local access can exploit the buffer overflow to cause denial of service or potentially execute arbitrary code, compromising system security. [2, 3]

Mitigation Strategies

Since no patches or countermeasures exist for this vulnerability, it is recommended to replace the affected librtsp library with an alternative product to mitigate the risk. [2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-1110. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart