Описание
The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability.
Ссылки
- PatchThird Party Advisory
- ExploitPatchThird Party Advisory
- PatchThird Party Advisory
- ExploitPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:miniupnp_project:miniupnpd:1.4:*:*:*:*:*:*:*
cpe:2.3:a:miniupnp_project:miniupnpd:1.5:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00689
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-416
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 6 лет назад
The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability.
CVSS3: 7.5
debian
больше 6 лет назад
The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and ...
github
больше 3 лет назад
The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability.
EPSS
Процентиль: 71%
0.00689
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-416