Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2014-8361

🗓️ 01 May 2015 00:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov📰️ 9 Media mentions👁 666 Views🌐 WEB

The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request

Related
Detection
Refs
Paths
Social
ReporterTitlePublishedViews
Family
0day.today		Realtek SDK Miniigd UPnP SOAP Command Execution Exploit
2 Jun 201500:00
zdt
GithubExploit		Exploit for CVE-2014-8361
31 Mar 202611:18
githubexploit
ATTACKERKB		CVE-2014-8361
1 May 201515:59
attackerkb
Circl		CVE-2014-8361
1 Jun 201500:00
circl
CISA KEV Catalog		Realtek SDK Improper Input Validation Vulnerability
18 Sep 202300:00
cisa_kev
CISA		 CISA Adds Eight Known Exploited Vulnerabilities to Catalog
18 Sep 202312:00
cisa
CNVD		Realtek rtl81xx miniigd SOAP Service Remote Code Execution Vulnerability
30 Apr 201500:00
cnvd
Check Point Advisories		Realtek SDK Miniigd AddPortMapping SOAP Action Command Injection (CVE-2014-8361)
20 Sep 201600:00
checkpoint_advisories
Cvelist		CVE-2014-8361
1 May 201500:00
cvelist
Exploit DB		Realtek SDK - Miniigd UPnP SOAP Command Execution (Metasploit)
1 Jun 201500:00
exploitdb
Rows per page
NVD
Node
dlinkdir-905l_firmwareRange2.05b01
AND
dlinkdir-905lMatcha1
OR
dlinkdir-905lMatchb1
Node
dlinkdir-605l_firmwareRange1.14b06
AND
dlinkdir-605lMatcha1
Node
dlinkdir-600l_firmwareRange1.15
AND
dlinkdir-600lMatcha1
Node
dlinkdir-619l_firmwareRange1.15
AND
dlinkdir-619lMatcha1
Node
dlinkdir-619l_firmwareRange2.07b02
AND
dlinkdir-619lMatchb1
Node
dlinkdir-605l_firmwareRange2.07b02
AND
dlinkdir-605lMatchb1
Node
dlinkdir-605l_firmwareRange3.03b07
AND
dlinkdir-605lMatchc1
Node
dlinkdir-600l_firmwareRange2.056b06
AND
dlinkdir-600lMatchb1
Node
dlinkdir-809_firmwareRange1.04b02
AND
dlinkdir-809Matcha1
OR
dlinkdir-809Matcha2
Node
dlinkdir-900l_firmwareRange<1.15b01
AND
dlinkdir-900lMatcha1
Node
realtekrealtek_sdkMatch-
Node
dlinkdir-501_firmwareRange1.01b04
AND
dlinkdir-501Matcha1
Node
dlinkdir-515_firmwareRange1.01b04
AND
dlinkdir-515Matcha1
Node
dlinkdir-615_firmwareMatch10.01b02
AND
dlinkdir-615Matchj1
Node
dlinkdir-615_firmwareRange6.06b03
AND
dlinkdir-615Matchfx
Node
atermwg1900hp2_firmwareRange1.3.1
AND
atermwg1900hp2Match-
Node
atermwg1900hp_firmwareRange2.5.1
AND
atermwg1900hpMatch-
Node
atermwg1800hp4_firmwareRange1.3.1
AND
atermwg1800hp4Match-
Node
atermwg1800hp3_firmwareRange1.5.1
AND
atermwg1800hp3Match-
Node
atermwg1200hs2_firmwareRange2.5.0
AND
atermwg1200hs2Match-
Node
atermwg1200hp3_firmwareRange1.3.1
AND
atermwg1200hp3Match-
Node
atermwg1200hp2_firmwareRange2.5.0
AND
atermwg1200hp2Match-
Node
atermw1200ex_firmwareRange1.3.1
AND
atermw1200exMatch-
Node
atermw1200ex-ms_firmwareRange1.3.1
AND
atermw1200ex-msMatch-
Node
atermwg1200hs_firmware
AND
atermwg1200hsMatch-
Node
atermwg1200hp_firmware
AND
atermwg1200hpMatch-
Node
atermwf800hp_firmware
AND
atermwf800hpMatch-
Node
atermwf300hp2_firmware
AND
atermwf300hp2Match-
Node
atermwr8165n_firmware
AND
atermwr8165nMatch-
Node
atermw500p_firmware
AND
atermw500pMatch-
Node
atermw300p_firmware
AND
atermw300pMatch-
ParameterPositionPathDescriptionCWE
NewInternalClientrequest bodywanipcn.xmlOS command injection via UPnP WANIPConnection AddPortMapping using NewInternalClient field.
NewLeaseDurationrequest bodywanipcn.xmlOS command injection via UPnP WANIPConnection AddPortMapping using NewInternalClient field.
NewInternalPortrequest bodywanipcn.xmlOS command injection via UPnP WANIPConnection AddPortMapping using NewInternalClient field.
NewExternalPortrequest bodywanipcn.xmlOS command injection via UPnP WANIPConnection AddPortMapping using NewInternalClient field.
NewProtocolrequest bodywanipcn.xmlOS command injection via UPnP WANIPConnection AddPortMapping using NewInternalClient field.
NewEnabledrequest bodywanipcn.xmlOS command injection via UPnP WANIPConnection AddPortMapping using NewInternalClient field.
NewRemoteHostrequest bodywanipcn.xmlOS command injection via UPnP WANIPConnection AddPortMapping using NewInternalClient field.

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
22 Apr 2026 14:27Current
8.1High risk
Vulners AI Score8.1
CVSS 3.19.8
CVSS 210
EPSS0.94031
SSVC
In Wild
cve-2014-8361miniigdsoap servicerealtek sdkremote attackersarbitrary codenewinternalclientexploit
666