Miniupnpd

miniupnpd

CVEs (12)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-5720 1Miniupnp Project 1Miniupnpd May 11, 2026 Apr 17, 2026 7.1 HIGH· v4 9.1 CRITICAL· v3 N/A· v2 miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attackers to cause a denial of service or information disclosure by sending a malformed SOAPAction header with a singl...Show more miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attackers to cause a denial of service or information disclosure by sending a malformed SOAPAction header with a single quote. Attackers can trigger an out-of-bounds memory read by exploiting improper length validation in ParseHttpHeaders(), where the parsed length underflows to a large unsigned value when passed to memchr(), causing the process to scan memory far beyond the allocated HTTP request buffer.Show less
CVE-2013-2600 2Debian Miniupnp Project 2Debian Linux Miniupnpd Nov 21, 2024 Nov 1, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 MiniUPnPd has information disclosure use of snprintf()
CVE-2019-12111 2Debian Miniupnp Project 2Debian Linux Miniupnpd Nov 21, 2024 May 15, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in copyIPv6IfDifferent in pcpserver.c.
CVE-2019-12109 1Miniupnp Project 1Miniupnpd Nov 21, 2024 May 15, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for rem_port.
CVE-2019-12108 1Miniupnp Project 1Miniupnpd Nov 21, 2024 May 15, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for int_port.
CVE-2019-12106 1Miniupnp Project 1Miniupnpd Nov 21, 2024 May 15, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability.
CVE-2017-1000494 1Miniupnp Project 1Miniupnpd Nov 21, 2024 Jan 3, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecif...Show more Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impactShow less
CVE-2017-8798 1Miniupnp Project 1Miniupnpd May 13, 2026 May 11, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Integer signedness error in MiniUPnP MiniUPnPc v1.4.20101221 through v2.0 allows remote attackers to cause a denial of service or possibly have unspecified other impact.
CVE-2013-1462 1Miniupnp Project 1Miniupnpd Apr 29, 2026 Jan 31, 2013 N/A· v4 N/A· v3 7.8 HIGH· v2 Integer signedness error in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (incorrect memory copy) via a SOAPAc...Show more Integer signedness error in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (incorrect memory copy) via a SOAPAction header that lacks a " (double quote) character, a different vulnerability than CVE-2013-0230.Show less
CVE-2013-1461 1Miniupnp Project 1Miniupnpd Apr 29, 2026 Jan 31, 2013 N/A· v4 N/A· v3 7.8 HIGH· v2 The ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (NULL pointer dereference and service crash) via a SOAPAction he...Show more The ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (NULL pointer dereference and service crash) via a SOAPAction header that lacks a # (pound sign) character, a different vulnerability than CVE-2013-0230.Show less
CVE-2013-0230 1Miniupnp Project 1Miniupnpd Apr 29, 2026 Jan 31, 2013 N/A· v4 N/A· v3 10.0 HIGH· v2 Stack-based buffer overflow in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to execute arbitrary code via a long quoted method.
CVE-2013-0229 1Miniupnp Project 1Miniupnpd Apr 29, 2026 Jan 31, 2013 N/A· v4 N/A· v3 7.8 HIGH· v2 The ProcessSSDPRequest function in minissdp.c in the SSDP handler in MiniUPnP MiniUPnPd before 1.4 allows remote attackers to cause a denial of service (service crash) via a crafted request that triggers a buffer over-re...Show more The ProcessSSDPRequest function in minissdp.c in the SSDP handler in MiniUPnP MiniUPnPd before 1.4 allows remote attackers to cause a denial of service (service crash) via a crafted request that triggers a buffer over-read.Show less