Описание
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | 1.2.3-1 |
| esm-apps/bionic | needed | |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | not-affected | 1.2.3-0ubuntu0.20.04.1 |
| focal | released | 1.2.3-0ubuntu0.20.04.1 |
| groovy | not-affected | 1.2.3-1 |
| hirsute | not-affected | 1.2.3-1 |
| impish | not-affected | 1.2.3-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | DNE | |
| esm-apps/bionic | needed | |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| groovy | DNE | |
| hirsute | DNE | |
| impish | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.2.1+dfsg-1ubuntu0.18.04.1 |
| devel | not-affected | 1.2.1+dfsg-3 |
| esm-apps/bionic | released | 1.2.1+dfsg-1ubuntu0.18.04.1 |
| esm-apps/focal | released | 1.2.1+dfsg-1ubuntu0.20.04.1 |
| esm-apps/jammy | not-affected | 1.2.1+dfsg-3 |
| esm-apps/noble | not-affected | 1.2.1+dfsg-3 |
| esm-apps/xenial | released | 1.1.5+dfsg-2ubuntu0.1 |
| esm-infra-legacy/trusty | DNE | |
| focal | released | 1.2.1+dfsg-1ubuntu0.20.04.1 |
| groovy | released | 1.2.1+dfsg-2ubuntu0.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | DNE | |
| esm-apps/bionic | needed | |
| esm-apps/focal | needed | |
| esm-apps/jammy | needed | |
| esm-infra-legacy/trusty | DNE | |
| focal | ignored | end of standard support, was needed |
| groovy | ignored | end of life |
| hirsute | ignored | end of life |
| impish | ignored | end of life |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2:2.6-15ubuntu2.7 |
| devel | released | 2:2.9-1ubuntu10 |
| eoan | ignored | end of life |
| esm-infra-legacy/trusty | not-affected | 2.1-0ubuntu1.7+esm3 |
| esm-infra/bionic | not-affected | 2:2.6-15ubuntu2.7 |
| esm-infra/focal | not-affected | 2:2.9-1ubuntu4.2 |
| esm-infra/xenial | not-affected | 2.4-0ubuntu6.7 |
| focal | released | 2:2.9-1ubuntu4.2 |
| groovy | released | 2:2.9-1ubuntu8.1 |
| hirsute | released | 2:2.9-1ubuntu10 |
Показывать по
Ссылки на источники
EPSS
7.8 High
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
The Open Connectivity Foundation UPnP specification before 2020-04-17 ...
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
EPSS
7.8 High
CVSS2
7.5 High
CVSS3