China National Vulnerability DatabaseCNVD-2022-21222ReadyMedia has unspecified vulnerabilities
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
ReadyMedia (formerly MiniDLNA) is a set of media service software compatible with LNA/UPnP-AV clients. The software supports media files such as music, pictures, videos, etc. A security vulnerability in DNS exists in versions of ReadyMedia (formerly MiniDLNA) prior to 1.3.1, which stems from a DNS rebinding issue that could be exploited by an attacker to filter media files using a remote web server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| readymedia readymedia | lt | 1.3.1 |
Related
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N