CVE-2019-12106

The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability.

Published : 2019-05-15 23:29 Updated : 2019-05-27 00:29

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Miniupnp Project Miniupnpd 1.4 cpe:/a:miniupnp_project:miniupnpd:1.4
Miniupnp Project Miniupnpd 1.5 cpe:/a:miniupnp_project:miniupnpd:1.5
  1. Miniupnp Project (1) Search CVE
    1. Miniupnpd (2) Search CVE
      1. 1.4
      2. 1.5

CWE

ID Name Description Links
CWE-416 Use After Free Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code. CVE

History of changes

Date Event
2019-05-27 00:29
2019-05-16 18:44
2019-05-15 23:29

New CVE