CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

9 matches found

SUSE CVE•added 2023/02/15 3:58 a.m.•1 views

SUSE CVE-2020-12695

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue...

7.5CVSS6.9AI score0.15193EPSS

Exploits3References10

Mageia•added 2020/12/31 2:32 p.m.•45 views

Updated minidlna packages fix security vulnerabilities

It was discovered that minidlna does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue CVE-2020-12695. Minidlna before versions 1.3.0 allows remote code execution...

9.8CVSS1.5AI score0.15193EPSS

Exploits4References2

Tenable Nessus•added 2020/11/06 12:0 a.m.•25 views

EulerOS Virtualization 3.0.6.6 : wpa_supplicant (EulerOS-SA-2020-2477)

According to the version of the wpasupplicant package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request...

7.8CVSS6.7AI score0.15193EPSS

Exploits3References2

NVD•added 2020/06/08 5:15 p.m.•26 views

CVE-2020-12695

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue...

7.8CVSS7.6AI score0.15193EPSS

Exploits3References17

UbuntuCve•added 2020/06/08 5:15 p.m.•32 views

CVE-2020-12695

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue...

7.8CVSS6.9AI score0.15193EPSS

Exploits3References8

Prion•added 2020/06/08 5:15 p.m.•35 views

Open redirect

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue...

7.8CVSS7.4AI score0.15193EPSS

Exploits3References17Affected Software2

OSV•added 2020/06/08 5:15 p.m.•1 views

UBUNTU-CVE-2020-12695

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue...

7.5CVSS6.7AI score0.15193EPSS

Exploits3References9

Debian CVE•added 2020/06/08 4:45 p.m.•27 views

CVE-2020-12695

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue...

7.8CVSS6.5AI score0.15193EPSS

ATTACKERKB•added 2020/06/08 12:0 a.m.•38 views

CVE-2020-12695 "CallStranger"

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. Recent assessments: kevthehermit at June 0...

7.8CVSS0.1AI score0.15193EPSS

Exploits3References22

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by