Filtered by vendor Miniupnp Project
Subscriptions
Filtered by product Miniupnpd
Subscriptions
Total
11 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2013-2600 | 2 Debian, Miniupnp Project | 2 Debian Linux, Miniupnpd | 2024-08-06 | 7.5 High |
| MiniUPnPd has information disclosure use of snprintf() | ||||
| CVE-2013-1462 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-06 | N/A |
| Integer signedness error in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (incorrect memory copy) via a SOAPAction header that lacks a " (double quote) character, a different vulnerability than CVE-2013-0230. | ||||
| CVE-2013-1461 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-06 | N/A |
| The ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (NULL pointer dereference and service crash) via a SOAPAction header that lacks a # (pound sign) character, a different vulnerability than CVE-2013-0230. | ||||
| CVE-2013-0229 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-06 | N/A |
| The ProcessSSDPRequest function in minissdp.c in the SSDP handler in MiniUPnP MiniUPnPd before 1.4 allows remote attackers to cause a denial of service (service crash) via a crafted request that triggers a buffer over-read. | ||||
| CVE-2013-0230 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-06 | N/A |
| Stack-based buffer overflow in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to execute arbitrary code via a long quoted method. | ||||
| CVE-2017-1000494 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-05 | N/A |
| Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact | ||||
| CVE-2017-8798 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-05 | N/A |
| Integer signedness error in MiniUPnP MiniUPnPc v1.4.20101221 through v2.0 allows remote attackers to cause a denial of service or possibly have unspecified other impact. | ||||
| CVE-2019-12106 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-04 | N/A |
| The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability. | ||||
| CVE-2019-12108 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-04 | N/A |
| A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for int_port. | ||||
| CVE-2019-12109 | 1 Miniupnp Project | 1 Miniupnpd | 2024-08-04 | N/A |
| A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for rem_port. | ||||
| CVE-2019-12111 | 2 Debian, Miniupnp Project | 2 Debian Linux, Miniupnpd | 2024-08-04 | 7.5 High |
| A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in copyIPv6IfDifferent in pcpserver.c. | ||||
Page 1 of 1.