Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
533076.2%HIGH

Related CVEs

33
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2026-5720miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attackers to cause a denial of service or information disclosure by sending a malformed SOAPAction header with a single quote. Attackers can trigger an out-of-bounds memory read by exploiting improper length validation in ParseHttpHeaders(), where the parsed length underflows to a large unsigned value when passed to memchr(), causing the process to scan memory far beyond the allocated HTTP request buffer.HIGH7.147.5%Apr 17, 2026
CVE-2020-24221An issue was discovered in GetByte function in miniupnp ngiflib version 0.4, allows local attackers to cause a denial of service (DoS) via crafted .gif file (infinite loop).MEDIUM5.521.2%Aug 11, 2023
CVE-2023-39114ngiflib commit 84a75 was discovered to contain a segmentation violation via the function SDL_LoadAnimatedGif at ngiflibSDL.c. This vulnerability is triggered when running the program SDLaffgif.MEDIUM5.516.3%Aug 2, 2023
CVE-2023-39113ngiflib commit fb271 was discovered to contain a segmentation violation via the function "main" at gif2tag.c. This vulnerability is triggered when running the program gif2tga.MEDIUM5.516.3%Aug 2, 2023
CVE-2023-37748ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at ngiflib.c.MEDIUM5.517.3%Jul 19, 2023
CVE-2022-30858An issue was discovered in ngiflib 0.4. There is SEGV in SDL_LoadAnimatedGif when use SDLaffgif. poc : ./SDLaffgif CA_file2_0MEDIUM6.540.8%Jul 17, 2023
CVE-2021-36531ngiflib 0.4 has a heap overflow in GetByte() at ngiflib.c:70 in NGIFLIB_NO_FILE mode, GetByte() reads memory buffer without checking the boundary.HIGH8.8Aug 27, 2021
CVE-2021-36530ngiflib 0.4 has a heap overflow in GetByteStr() at ngiflib.c:108 in NGIFLIB_NO_FILE mode, GetByteStr() copy memory buffer without checking the boundary.HIGH8.8Aug 27, 2021
CVE-2019-20219ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor in ngiflib.c.HIGH8.866.6%Jan 2, 2020
CVE-2019-19011MiniUPnP ngiflib 0.4 has a NULL pointer dereference in GifIndexToTrueColor in ngiflib.c via a file that lacks a palette.HIGH7.574.7%Nov 17, 2019
CVE-2013-2600MiniUPnPd has information disclosure use of snprintf()HIGH7.581.4%Nov 1, 2019
CVE-2019-16347ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.HIGH8.871.1%Sep 16, 2019
CVE-2019-16346ngiflib 0.4 has a heap-based buffer overflow in WritePixel() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.HIGH8.873.4%Sep 16, 2019
CVE-2019-12111A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in copyIPv6IfDifferent in pcpserver.c.HIGH7.587.4%May 15, 2019
CVE-2019-12109A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for rem_port.NONE84.4%May 15, 2019
CVE-2019-12108A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for int_port.NONE84.4%May 15, 2019
CVE-2019-12106The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and 1.5 allows a remote attacker to crash the process due to a Use After Free vulnerability.NONE84.8%May 15, 2019
CVE-2018-11657ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif.NONE60.4%Jun 1, 2018
CVE-2018-11578GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault.NONE59.0%May 31, 2018
CVE-2018-11576ngiflib.c in MiniUPnP ngiflib 0.4 has a heap-based buffer over-read in GifIndexToTrueColor.NONE70.0%May 31, 2018