Denial Of Service Vulnerability in MiniUPnP MiniUPnPd
CVE-2019-12109

7.5HIGH

Key Information:

Vendor: Miniupnp Project
Status: Miniupnpd
Vendor: CVE Published:; 15 May 2019

🔔 Create Miniupnp Project Vulnerability Alert

What is CVE-2019-12109?

A Denial Of Service vulnerability exists in MiniUPnP MiniUPnPd versions up to 2.1. This flaw is caused by a NULL pointer dereference in the GetOutboundPinholeTimeout function found in upnpsoap.c. Attackers can exploit this vulnerability to crash the MiniUPnPd service, disrupting its operations and impacting network functionalities for users relying on this service.