SIP signaling stack in Verizon IMS (unspecified version) implements SIP signaling without IPsec integrity protection (missing Security-Client/Security-Server he…

A vulnerability in Verizon IMS SIP signaling stack allows on-path attackers to compromise VoLTE communications due to missing IPsec integrity protection. The vulnerability affects SIP signaling implementation that lacks Security-Client/Security-Server headers and ESP traffic protection. Attackers can perform passive monitoring and active manipulation of unsecured SIP messages across radio and core networks. This compromises confidentiality, integrity, and authenticity of VoLTE signaling traffic. The vulnerability impacts telecommunications infrastructure and voice over LTE services.