Lucene search

K
osvGoogleOSV:CVE-2020-12695
HistoryJun 08, 2020 - 5:15 p.m.

CVE-2020-12695

2020-06-0817:15:09
Google
osv.dev
9

0.005 Low

EPSS

Percentile

77.6%

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.

References