Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
miniupnpd vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-8330
An issue exists on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a UPnP functionality for devices to interface with the router and interact with the device. It seems that the "NewInMessage" SOAP parameter passed with a huge...
Securifi Almond 2015 Firmware Al-r096
Securifi Almond+firmware Al-r096
Securifi Almond Firmware Al-r096
4.4
CVSSv3
CVE-2019-12611
An issue exists in Bitdefender BOX firmware versions prior to 2.1.37.37-34 that affects the general reliability of the product. Specially crafted packets sent to the miniupnpd implementation in result in the device allocating memory without freeing it later. This behavior can cau...
Bitdefender Box Firmware
NA
CVE-2013-0229
The ProcessSSDPRequest function in minissdp.c in the SSDP handler in MiniUPnP MiniUPnPd prior to 1.4 allows remote malicious users to cause a denial of service (service crash) via a crafted request that triggers a buffer over-read.
Miniupnp Project Miniupnpd 1.1
Miniupnp Project Miniupnpd
Miniupnp Project Miniupnpd 1.2
Miniupnp Project Miniupnpd 1.0
2 EDB exploits
1 Github repository
NA
CVE-2013-0230
Stack-based buffer overflow in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote malicious users to execute arbitrary code via a long quoted method.
Miniupnp Project Miniupnpd 1.0
3 EDB exploits
1 Github repository
NA
CVE-2013-1461
The ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote malicious users to cause a denial of service (NULL pointer dereference and service crash) via a SOAPAction header that lacks a # (pound sign) character, a differen...
Miniupnp Project Miniupnpd 1.0
NA
CVE-2013-1462
Integer signedness error in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote malicious users to cause a denial of service (incorrect memory copy) via a SOAPAction header that lacks a " (double quote) charact...
Miniupnp Project Miniupnpd 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2