Lucene search

CVE-2021-29462

🗓️ 20 Apr 2021 21:08:15Reported by GitHub_MType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 69 Views

The Portable SDK for UPnP Devices is vulnerable to DNS rebinding attacks due to lack of `Host` header validation

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 13
Debian CVE	CVE-2021-29462	20 Apr 202121:15	–	debiancve
UbuntuCve	CVE-2021-29462	20 Apr 202100:00	–	ubuntucve
NVD	CVE-2021-29462	20 Apr 202121:15	–	nvd
OSV	CVE-2021-29462	20 Apr 202121:15	–	osv
Mageia	Updated libupnp packages fix a security vulnerability	9 Jul 202101:43	–	mageia
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2021-29462	4 Mar 202500:00	–	nessus
OpenVAS	lipupnp < 1.14.6 DNS Rebind Vulnerability (GHSA-6hqq-w3jq-9fhg)	22 Apr 202100:00	–	openvas
OpenVAS	Mageia: Security Advisory (MGASA-2021-0319)	28 Jan 202200:00	–	openvas
Prion	Spoofing	20 Apr 202121:15	–	prion
ArchLinux	[ASA-202104-8] libupnp: content spoofing	29 Apr 202100:00	–	archlinux

Nvd

Vulners

Node

pupnp_project pupnpRange<1.14.6

[
  {
    "product": "pupnp",
    "vendor": "pupnp",
    "versions": [
      {
        "status": "affected",
        "version": "< 1.14.6"
      }
    ]
  }
]

Source	Link
openwall	www.openwall.com/lists/oss-security/2021/04/20/4
github	www.github.com/pupnp/pupnp/security/advisories/GHSA-6hqq-w3jq-9fhg

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Apr 2021 21:15Current

8.3High risk

Vulners AI Score8.3

CVSS27.5

CVSS37.6 - 9.8

EPSS0.00178