Lucene search
+L

9105 matches found

NVD
NVD
added 3 days ago6 views

CVE-2026-58547

Heap-based buffer overflow in Universal Plug and Play upnp.dll allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00364EPSS
Exploits0References1
NVD
NVD
added 3 days ago3 views

CVE-2026-50455

Use of uninitialized resource in Universal Plug and Play upnp.dll allows an authorized attacker to disclose information locally...

5.5CVSS0.00306EPSS
Exploits0References1
NVD
NVD
added 3 days ago4 views

CVE-2026-49180

Improper link resolution before file access 'link following' in Universal Plug and Play upnp.dll allows an authorized attacker to disclose information locally...

5.5CVSS0.00273EPSS
Exploits0References1
Cvelist
Cvelist
added 3 days ago33 views

CVE-2026-58547 Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege Vulnerability

...

5.5CVSS0.00364EPSS
Exploits0References1
CVE
CVE
added 3 days ago9 views

CVE-2026-58547

CVE-2026-58547 is a Windows UPnP Device Host vulnerability. The issue is a heap-based buffer overflow in upnp.dll that allows an authenticated local attacker to elevate privileges. The NVD entry and multiple advisories describe the root cause as a heap overflow in UPnP device host, with CVSS deta...

7.8CVSS6.1AI score0.00364EPSS
Exploits0References1Affected Software9
CVE
CVE
added 3 days ago19 views

CVE-2026-50455

CVE-2026-50455 describes an information disclosure in Universal Plug and Play (upnp.dll) caused by the use of an uninitialized resource. The vulnerability allows an authorized local attacker to disclose information. The reported impact shows confidentiality impact (C) as High, with local access a...

5.5CVSS6AI score0.00306EPSS
Exploits0References1
Cvelist
Cvelist
added 3 days ago23 views

CVE-2026-50455 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

...

5.5CVSS0.00306EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 3 days ago5 views

CVE-2026-50455 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

...

5.5CVSS6.1AI score0.00306EPSS
Exploits0References1
Cvelist
Cvelist
added 3 days ago23 views

CVE-2026-49180 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

...

5.5CVSS0.00273EPSS
Exploits0References1
CVE
CVE
added 3 days ago17 views

CVE-2026-49180

This CVE concerns the Universal Plug and Play component upnp.dll, where an improper link resolution before file access (link following) can lead to local information disclosure. The entry notes that an authorized attacker can disclose information locally, with a CVSS base score of 5.5 (Medium). A...

5.5CVSS6AI score0.00273EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 3 days ago2 views

CVE-2026-49180 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

...

5.5CVSS6.1AI score0.00273EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 3 days ago15 views

Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

Use of uninitialized resource in Universal Plug and Play upnp.dll allows an authorized attacker to disclose information locally...

5.5CVSS6.1AI score0.00306EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 3 days ago10 views

Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege Vulnerability

Heap-based buffer overflow in Universal Plug and Play upnp.dll allows an authorized attacker to elevate privileges locally...

7.8CVSS6.2AI score0.00364EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/07/10 12:0 a.m.8 views

Oracle Linux 7 : tigervnc (ELSA-2026-22456)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-22456 advisory. - Fix CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002, CVE-2026-34003 and CVE-2026-34352 Orabug: 39478221 - Fix CVE-2025-62229:...

9.8CVSS6.2AI score0.00489EPSS
Exploits0References7
EUVD
EUVD
added 2026/07/09 6:31 p.m.5 views

EUVD-2026-42644

Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service. The device fails to validate the length of the clock= value in the Range header field when processing a PLAY request. An unauthenticated remote attacker who has completed a standard RTSP session handsha...

6.4AI score0.0041EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/09 6:31 p.m.7 views

EUVD-2026-42647

A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 firmware V31.1.9.91 allows an unauthenticated remote attacker to cause a denial of service via a crafted PLAY request...

7.5CVSS6.3AI score0.0041EPSS
Exploits0References2
NVD
NVD
added 2026/07/09 5:17 p.m.12 views

CVE-2026-51604

A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 firmware V31.1.9.91 allows an unauthenticated remote attacker to cause a denial of service via a crafted PLAY request...

7.5CVSS0.0041EPSS
Exploits0References1
NVD
NVD
added 2026/07/09 5:16 p.m.9 views

CVE-2026-51601

Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service. The device fails to validate the length of the clock= value in the Range header field when processing a PLAY request. An unauthenticated remote attacker who has completed a standard RTSP session handsha...

7.5CVSS0.0041EPSS
Exploits0References1
CVE
CVE
added 2026/07/09 12:0 a.m.9 views

CVE-2026-51601

The CVE describes a stack-based buffer overflow in the RTSP service of Tenda CP3 V3.0 firmware (version V31.1.9.91). The flaw arises from insufficient validation of the clock= value in the Range header during a PLAY request, enabling an unauthenticated remote attacker who has completed a standard...

7.5CVSS6.4AI score0.0041EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/09 12:0 a.m.33 views

CVE-2026-51601

Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service. The device fails to validate the length of the clock= value in the Range header field when processing a PLAY request. An unauthenticated remote attacker who has completed a standard RTSP session handsha...

0.0041EPSS
Exploits0References1
Rows per page
Query Builder