Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
miniupnpd vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2013-0230
Stack-based buffer overflow in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote malicious users to execute arbitrary code via a long quoted method.
Miniupnp Project Miniupnpd 1.0
3 EDB exploits
1 Github repository
7.8
CVSSv2
CVE-2013-1462
Integer signedness error in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote malicious users to cause a denial of service (incorrect memory copy) via a SOAPAction header that lacks a " (double quote) charact...
Miniupnp Project Miniupnpd 1.0
7.8
CVSSv2
CVE-2013-0229
The ProcessSSDPRequest function in minissdp.c in the SSDP handler in MiniUPnP MiniUPnPd prior to 1.4 allows remote malicious users to cause a denial of service (service crash) via a crafted request that triggers a buffer over-read.
Miniupnp Project Miniupnpd
Miniupnp Project Miniupnpd 1.2
Miniupnp Project Miniupnpd 1.1
Miniupnp Project Miniupnpd 1.0
2 EDB exploits
1 Github repository
7.8
CVSSv2
CVE-2013-1461
The ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote malicious users to cause a denial of service (NULL pointer dereference and service crash) via a SOAPAction header that lacks a # (pound sign) character, a differen...
Miniupnp Project Miniupnpd 1.0
7.5
CVSSv2
CVE-2017-8798
Integer signedness error in MiniUPnP MiniUPnPc v1.4.20101221 through v2.0 allows remote malicious users to cause a denial of service or possibly have unspecified other impact.
Miniupnp Project Miniupnpd 1.5
Miniupnp Project Miniupnpd 1.8
Miniupnp Project Miniupnpd 1.9
Miniupnp Project Miniupnpd 2.0
Miniupnp Project Miniupnpd 1.4
Miniupnp Project Miniupnpd 1.7
1 EDB exploit
1 Github repository
5
CVSSv2
CVE-2013-2600
MiniUPnPd has information disclosure use of snprintf()
Miniupnp Project Miniupnpd 1.8
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 8.0
5
CVSSv2
CVE-2019-12106
The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote malicious user to crash the process due to a Use After Free vulnerability.
Miniupnp Project Miniupnpd 1.5
Miniupnp Project Miniupnpd 1.4
5
CVSSv2
CVE-2019-12107
The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd up to and including 2.1 allows a remote malicious user to leak information from the heap due to improper validation of an snprintf return value.
Miniupnp.free Miniupnpd
5
CVSSv2
CVE-2019-12109
A Denial Of Service vulnerability in MiniUPnP MiniUPnPd up to and including 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for rem_port.
Miniupnp Project Miniupnpd
5
CVSSv2
CVE-2019-12110
An AddPortMapping Denial Of Service vulnerability in MiniUPnP MiniUPnPd up to and including 2.1 exists due to a NULL pointer dereference in upnpredirect.c.
Miniupnp.free Miniupnpd
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »