CVE-2019-12107 — Unchecked Return Value in Miniupnpd

CWE-252 — Unchecked Return Value CWE-120 — Classic Buffer Overflow10 documents6 sources

Severity

9.8CRITICALNVD

NVD7.5OSV7.5

EPSS

0.3%

top 44.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Miniupnp Project Miniupnpd Debian Miniupnpd Miniupnp.free Miniupnpd

Timeline

PublishedMay 15

Latest updateNov 18

Description

The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/miniupnpd< miniupnpd 2.1-6 (bookworm)

▶Debianminiupnp_project/miniupnpd< 2.1-6+3

▶Ubuntuminiupnp_project/miniupnpd< 1.8.20140523-4.1+deb9u2build0.16.04.1

▶NVDminiupnp.free/miniupnpd2.1

Patches

Patch: github.com ↗Patch: www.vdoo.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-w2jg-6vfx-xj22: miniupnp before 4c90b87, as used in Bitcoin Core before 0↗2024-11-18

▶

GHSA

GHSA-wh92-hmx9-3mf2: The upnp_event_prepare function in upnpevents↗2022-05-24

▶

OSV

miniupnpd vulnerabilities↗2020-09-25

▶

OSV

CVE-2019-12107: The upnp_event_prepare function in upnpevents↗2019-05-15

▶

📋Vendor Advisories

Ubuntu

MiniUPnPd vulnerabilities↗2020-09-25

▶

Debian

CVE-2019-12107: miniupnpd - The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2....↗2019

▶

💬Community

Bugzilla

CVE-2019-12107 miniupnp: information disclosure in function upnp_event_prepare in upnpevents.c↗2019-05-29

▶

Bugzilla

CVE-2019-12107 miniupnpd: miniupnp: information disclosure in function upnp_event_prepare in upnpevents.c [fedora-all]↗2019-05-29

▶