Libupnp Project Libupnp vulnerabilities
5 known vulnerabilities affecting libupnp_project/libupnp.
Total CVEs
5
CISA KEV
0
Public exploits
3
Exploited in wild
2
Severity breakdown
CRITICAL3HIGH2
Vulnerabilities
Page 1 of 1
CVE-2012-5958P1CRITICALCVSS 10.0ExploitedPoC≤ 1.6.17v1.4.0+24 more2013-01-31
CVE-2012-5958 [CRITICAL] CWE-119 CVE-2012-5958: Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP pa
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) before 1.6.18 allows remote attackers to execute arbitrary code via a UDP packet with a crafted string that is not properly handled after a certain pointe
nvd
CVE-2016-6255P1HIGHCVSS 7.5ExploitedPoC≤ 1.6.202017-03-07
CVE-2016-6255 [HIGH] CWE-284 CVE-2016-6255: Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in
Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in the webroot via a POST request without a registered handler.
nvdosv
CVE-2012-5961P2CRITICALCVSS 10.0PoCv1.3.12013-01-31
CVE-2012-5961 [CRITICAL] CWE-119 CVE-2012-5961: Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP pa
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) 1.3.1 allows remote attackers to execute arbitrary code via a long UDN (aka device) field in a UDP packet.
nvd
CVE-2016-8863P3CRITICALCVSS 9.8≤ 1.6.202017-03-07
CVE-2016-8863 [CRITICAL] CWE-119 CVE-2016-8863: Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SD
Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in the CALLBACK header of an SUBSCRIBE request.
nvdosv
CVE-2020-13848P3HIGHCVSS 7.5≤ 1.12.12020-06-04
CVE-2020-13848 [HIGH] CWE-476 CVE-2020-13848: Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of serv
Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c.
nvd