Integer Underflow Vulnerability in miniupnpd by MiniUPnP
CVE-2026-5720

7.1HIGH

Key Information:

Vendor

Miniupnp Project

Status
Miniupnpd
Vendor
CVE Published:
17 April 2026

What is CVE-2026-5720?

The miniupnpd software is affected by an integer underflow vulnerability due to improper parsing of the SOAPAction header. This flaw allows remote attackers to craft malicious requests that lead to denial of service or expose sensitive information. The vulnerability arises when the parsed length of the SOAPAction header underflows, causing an out-of-bounds memory read during HTTP request processing. Specifically, when a single quote is included in the SOAPAction header, it triggers unsafe memory access, potentially leading to severe disruptions in service or data exposure.

Affected Version(s)

miniupnpd 0 < 2.3.10

References

https://github.com/miniupnp/miniupnp/
product
https://github.com/miniupnp/miniupnp/commit/a0ee71e9fa66b...
https://www.vulncheck.com/advisories/miniupnpd-integer-un...
third-party-advisory

CVSS V4

Score:
7.1
Severity:
HIGH
Confidentiality:
Low
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Kazuma Matsumoto
.