Lucene search
K

58 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/05 12:0 a.m.2 views

EPSON Printers Incorrect Default Permissions (CVE-2020-12695)

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. This plugin only works with Tenable.ot...

7.8CVSS6.8AI score0.15193EPSS
Exploits3References17
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : gssdp-1.0.5-1.el8, gupnp-1.0.6-1.el8 (AXSA:2021-2048:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2048:01 advisory. hostapd: UPnP SUBSCRIBE misbehavior in WPS AP CVE-2020-12695 Tenable has extracted the preceding description block directly from the MiracleLinux security...

7.8CVSS6.7AI score0.15193EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.20 views

RHEL 7 : gupnp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - hostapd: UPnP SUBSCRIBE misbehavior in WPS AP CVE-2020-12695 Note that Nessus has not tested for this issue but has...

7.5CVSS7.3AI score0.15193EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.27 views

RHEL 5 : hostapd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - hostapd: UPnP SUBSCRIBE misbehavior in WPS AP CVE-2020-12695 Note that Nessus has not tested for this issue but has...

7.7AI score0.15193EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.29 views

Rocky Linux 8 : gssdp and gupnp (RLSA-2021:1789)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:1789 advisory. - The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a differe...

7.8CVSS6.7AI score0.15193EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-4734-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.9CVSS8AI score0.15193EPSS
Exploits4References2
OSV
OSV
added 2022/07/22 11:4 a.m.3 views

OESA-2022-1768 gupnp security update

GUPnP is an elegant, object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible. It provides the same set of features as libupnp,but shields the developer from most...

7.8CVSS6.9AI score0.15193EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2022/05/09 12:0 a.m.32 views

NewStart CGSL MAIN 6.02 : gupnp Multiple Vulnerabilities (NS-SA-2022-0060)

The remote NewStart CGSL host, running version MAIN 6.02, has gupnp packages installed that are affected by multiple vulnerabilities: - The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different...

8.1CVSS6.8AI score0.15193EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.24 views

AlmaLinux 8 : gssdp and gupnp (ALSA-2021:1789)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:1789 advisory. - The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different...

7.8CVSS6.7AI score0.15193EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.7 views

Mageia: Security Advisory (MGASA-2020-0304)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.15193EPSS
Exploits3References4
Slackware Linux
Slackware Linux
added 2021/12/29 3:28 a.m.70 views

[slackware-security] wpa_supplicant

New wpasupplicant packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/wpasupplicant-2.9-i586-1slack14.2.txz: Upgraded. This update fixes the following security issues: AP mode PMF...

7.9CVSS0.7AI score0.15193EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.49 views

Oracle Linux 8 : gssdp / and / gupnp (ELSA-2021-1789)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-1789 advisory. gssdp 1.0.5-1 + gssdp-1.0.5-1 - Update to 1.0.5 - Fix SUBSCRIBE misbehaviour - Resolves: 1861928 gupnp 1.0.6-1 + gupnp-1.0.6-1 - Update to 1.0.6 - Fix SUBSCRIBE...

7.8CVSS6.8AI score0.15193EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.41 views

RHEL 8 : gssdp and gupnp (RHSA-2021:1789)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:1789 advisory. GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API...

7.8CVSS6.9AI score0.15193EPSS
Exploits3References6
RedHat Linux
RedHat Linux
added 2021/05/18 2:13 p.m.37 views

Moderate: Red Hat Security Advisory: gssdp and gupnp security update

An update for gssdp and gupnp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.8CVSS6.9AI score0.15193EPSS
Exploits3References3
OSV
OSV
added 2021/05/18 6:5 a.m.43 views

RLSA-2021:1789 Moderate: gssdp and gupnp security update

GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible. GSSDP implements resource discovery and announcement over SSDP and is part of gUPnP. The...

7.5CVSS7.9AI score0.15193EPSS
Exploits3References2
OSV
OSV
added 2021/05/18 6:5 a.m.43 views

ALSA-2021:1789 Moderate: gssdp and gupnp security update

GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible. GSSDP implements resource discovery and announcement over SSDP and is part of gUPnP. The...

7.8CVSS8AI score0.15193EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2021/04/23 12:0 a.m.41 views

Debian DSA-4898-1 : wpa - security update

Several vulnerabilities have been discovered in wpasupplicant and hostapd. - CVE-2020-12695 It was discovered that hostapd does not properly handle UPnP subscribe messages under certain conditions, allowing an attacker to cause a denial of service. - CVE-2021-0326 It was discovered that...

7.9CVSS7.1AI score0.15193EPSS
Exploits4References11
Debian
Debian
added 2021/04/22 6:52 p.m.115 views

[SECURITY] [DSA 4898-1] wpa security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4898-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 22, 2021 https://www.debian.org/security/faq -...

7.9CVSS8.9AI score0.15193EPSS
Exploits4
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.29 views

openSUSE: Security Advisory for hostapd (openSUSE-SU-2021:0519-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.2AI score0.15193EPSS
Exploits3References2
OSV
OSV
added 2021/04/12 10:5 a.m.8 views

OPENSUSE-SU-2021:0545-1 Security update for hostapd

This update for hostapd fixes the following issues: - CVE-2021-30004: forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c boo1184348 - CVE-2020-12695: UPnP SUBSCRIBE misbehavior in hostapd WPS AP boo1172700 - CVE-2019-16275: AP mode PMF...

7.8CVSS6.7AI score0.15193EPSS
Exploits3References7
Rows per page
Query Builder