Showing 1 - 5 of 5

CVE-2021-33516

Status Candidate

Overview

An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to trick a victim's browser into triggering actions against local UPnP services implemented using this library. Depending on the affected service, this could be used for data exfiltration, data tempering, etc.

Related Files

Red Hat Security Advisory 2021-2459-01: Posted Jun 17, 2021; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2021-2459-01 - GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-33516; SHA-256 | c5cede8d7c81235b6de7d1f9c677f345f0a25d83ce02f1001f588f0dd118cb4b; Download | Favorite | View

Red Hat Security Advisory 2021-2417-01: Posted Jun 15, 2021; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2021-2417-01 - GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-33516; SHA-256 | 3c595b7021ce12025e736ffc6ff486221878057213781ddc7b12b2a0b073e615; Download | Favorite | View

Red Hat Security Advisory 2021-2422-01: Posted Jun 15, 2021; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2021-2422-01 - GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-33516; SHA-256 | 76aab2be6e1650642d7519c7d8a982f57b80ea1e809797ecce25c9f7bb048d6b; Download | Favorite | View

Red Hat Security Advisory 2021-2363-01: Posted Jun 10, 2021; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2021-2363-01 - GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-33516; SHA-256 | 32ae5f6e73df24a8d93e13e6d5a85ee4758434700d677c4d484d14aede483674; Download | Favorite | View

Ubuntu Security Notice USN-4970-1: Posted Jun 1, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4970-1 - It was discovered that GUPnP incorrectly filtered local requests. If a user were tricked into visiting a malicious website, a remote attacker could possibly use this issue to perform actions against local UPnP services such as obtaining or altering sensitive information.; tags | advisory, remote, local; systems | linux, ubuntu; advisories | CVE-2021-33516; SHA-256 | 0a2b86cdd89d16b61a286b6d83eab7d18ff398bbe1162d771f34da42e8f707d9; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 221 files
Ubuntu 59 files
Debian 30 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
tmrswrr 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,298)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,550)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,453)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

CVE-2021-33516

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems