Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.15 views

CentOS 7 : gupnp (RHSA-2021:2417)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2417 advisory. - An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to...

8.1CVSS7.6AI score0.01084EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/06/25 12:0 a.m.27 views

Security update for gupnp (important)

openSUSE Security Update: Security update for gupnp Announcement ID: openSUSE-SU-2021:0917-1 Rating: important References: 1186590 Cross-References: CVE-2021-33516 CVSS scores: CVE-2021-33516 NVD : 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N CVE-2021-33516 SUSE: 9.4...

9.4CVSS7.1AI score0.01084EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/06/16 1:17 p.m.5 views

gupnp: allows DNS rebinding which could result in tricking browser into triggering actions against local UPnP services

A flaw was found in gupnp. DNS rebinding can occur when a victim's browser is used by a remote web server to trigger actions against local UPnP services including data exfiltration, data tempering, and other exploits. The highest threat from this vulnerability is to data confidentiality and...

8.1CVSS5.8AI score0.01084EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2021/06/14 9:8 p.m.4 views

gupnp: allows DNS rebinding which could result in tricking browser into triggering actions against local UPnP services

A flaw was found in gupnp. DNS rebinding can occur when a victim's browser is used by a remote web server to trigger actions against local UPnP services including data exfiltration, data tempering, and other exploits. The highest threat from this vulnerability is to data confidentiality and...

8.1CVSS5.8AI score0.01084EPSS
Exploits0References8
OSV
OSV
added 2021/05/24 3:15 p.m.40 views

CVE-2021-33516

An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to trick a victim's browser into triggering actions against local UPnP services implemented using this library. Depending on the affected...

8.1CVSS6.5AI score0.01084EPSS
Exploits0References2
Prion
Prion
added 2021/05/24 3:15 p.m.20 views

Code injection

An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to trick a victim's browser into triggering actions against local UPnP services implemented using this library. Depending on the affected...

5.8CVSS7.6AI score0.01084EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder