Description
An issue in the UPnP protocol in 4thline cling 2.0.0 through 2.1.2 allows remote attackers to cause a denial of service via an unchecked CALLBACK parameter in the request header
Remediation
References
https://github.com/4thline/cling/issues/253
https://zh-cn.tenable.com/blog/cve-2020-12695-callstranger-vulnerability-in-universal-plug-and-play-upnp-puts-billions-of?tns_redirect=true
Related Vulnerabilities
CVE-2022-25758 Vulnerability in npm package scss-tokenizer
CVE-2023-45133 Vulnerability in npm package @babel/traverse
CVE-2023-4043 Vulnerability in maven package org.eclipse.parsson:parsson
CVE-2023-48711 Vulnerability in npm package google-translate-api-browser
CVE-2020-16040 Vulnerability in maven package org.webjars.npm:electron