Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 4 days ago4 views

CVE-2026-45599

Use after free in Universal Plug and Play upnp.dll allows an unauthorized attacker to execute code over a network...

8.1CVSS5.7AI score0.00095EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/05/22 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: gupnp (UTSA-2026-016639)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016639 advisory. An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to trick ...

8.1CVSS7.2AI score0.00241EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 3:44 a.m.1 views

SUSE CVE-2021-28302

A stack overflow in pupnp before version 1.14.5 can cause the denial of service through the ParserparseDocument function. ixmlNodefree will release a child node recursively, which will consume stack space and lead to a crash...

7.5CVSS7.7AI score0.00374EPSS
Exploits1References2
Snyk
Snykadded 2021/04/20 9:15 p.m.2 views

Improper Input Validation

Overview Affected versions of this package are vulnerable to Improper Input Validation. The Portable SDK for UPnP Devices is an SDK for development of UPnP device and control point applications. The server part of pupnp libupnp appears to be vulnerable to DNS rebinding attacks because it does not...

9.8CVSS6.8AI score0.00137EPSS
Exploits0References2
OSV
OSVadded 2020/06/04 8:15 p.m.1 views

UBUNTU-CVE-2020-13848

Portable UPnP SDK aka libupnp 1.12.1 and earlier allows remote attackers to cause a denial of service crash via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/servicetable/servicetable.c...

7.5CVSS7.1AI score0.03242EPSS
Exploits0References4
CNVD
CNVDadded 2016/09/09 12:0 a.m.1 views

libupnp Heap Buffer Overflow Vulnerability

libupnp is a portable open source provides an API and open source code UPnP development kit . A remote heap buffer overflow vulnerability exists in libupnp versions 1.6.19 and 1.8.0. Due to the program failing to perform proper boundary checks on user-submitted input. An attacker can exploit this...

9.8CVSS8.1AI score0.16075EPSS
Exploits0References1
Snyk
Snykadded 2013/01/31 9:55 p.m.1 views

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds. Stack-based buffer overflow in the uniqueservicename function in ssdp/ssdpserver.c in the SSDP parser in the portable SDK for UPnP Devices aka libupnp, formerly the Intel SDK for UPnP devices 1.3.1 allows remote attackers...

10CVSS8.4AI score0.72326EPSS
Exploits1References2
Rows per page
Query Builder