Skip to main content

Pupnp

3 CVEs product

Monthly

CVE-2026-41682 MEDIUM PATCH This Month

pupnp is an SDK for development of UPnP device and control point applications. Prior to version 1.18.5, pupnp is vulnerable to SRRF port confusion due to port truncation via atoi() cast in parse_uri(). This issue has been patched in version 1.18.5.

Information Disclosure Pupnp
NVD GitHub
CVSS 4.0
6.9
EPSS
0.0%
CVE-2021-29462 CRITICAL Act Now

The Portable SDK for UPnP Devices is an SDK for development of UPnP device and control point applications. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Pupnp
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2021-28302 HIGH POC This Week

A stack overflow in pupnp before version 1.14.5 can cause the denial of service through the Parser_parseDocument() function. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Pupnp
NVD GitHub
CVSS 3.1
7.5
EPSS
1.4%
EPSS 0% CVSS 6.9
MEDIUM PATCH This Month

pupnp is an SDK for development of UPnP device and control point applications. Prior to version 1.18.5, pupnp is vulnerable to SRRF port confusion due to port truncation via atoi() cast in parse_uri(). This issue has been patched in version 1.18.5.

Information Disclosure Pupnp
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL Act Now

The Portable SDK for UPnP Devices is an SDK for development of UPnP device and control point applications. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Pupnp
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC This Week

A stack overflow in pupnp before version 1.14.5 can cause the denial of service through the Parser_parseDocument() function. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Pupnp
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy