Lucene search
K

CVE-2021-29462

🗓️ 20 Apr 2021 21:15:00Reported by ubuntu.comType 
ubuntucve
 ubuntucve
🔗 ubuntu.com👁 14 Views

The Portable SDK for UPnP Devices (libupnp) is vulnerable to DNS rebinding attacks due to unvalidated `Host` header, mitigated by DNS revolvers. Fixed in version 1.14.6

Related
Packages
Refs
ReporterTitlePublishedViews
Family
ArchLinux
[ASA-202104-8] libupnp: content spoofing
29 Apr 202100:00
archlinux
Information Security Automation
Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs
30 Dec 202218:03
avleonov
CNNVD
UPnP 数据伪造问题漏洞
20 Apr 202100:00
cnnvd
CVE
CVE-2021-29462
20 Apr 202121:10
cve
Cvelist
CVE-2021-29462 DNS rebinding in pupnp
20 Apr 202121:10
cvelist
Debian CVE
CVE-2021-29462
20 Apr 202121:10
debiancve
EUVD
EUVD-2021-16073
7 Oct 202500:30
euvd
Mageia
Updated libupnp packages fix a security vulnerability
8 Jul 202122:43
mageia
NVD
CVE-2021-29462
20 Apr 202121:15
nvd
OpenVAS
lipupnp < 1.14.6 DNS Rebind Vulnerability (GHSA-6hqq-w3jq-9fhg)
22 Apr 202100:00
openvas
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Ubuntu18.04anylibupnp0libupnp_0_any.deb
Ubuntu22.04anypupnp-1.80pupnp-1.8_0_any.deb
Ubuntu18.04anypupnp-1.80pupnp-1.8_0_any.deb
Ubuntu20.04anypupnp-1.80pupnp-1.8_0_any.deb

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

26 Aug 2025 12:30Current
7.2High risk
Vulners AI Score7.2
CVSS 27.5
CVSS 3.17.6 - 9.8
EPSS0.00627
14