VDB

GCVE-VVD-MAGEIA-2021-321

GCVE-VVD-MAGEIA-2021-321
Advisory Published
Vulnetix · Advisory published July 8, 2021
An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to trick a victim's browser into triggering actions against local UPnP services implemented using this library. Depending on the affected service, this could be used for data exfiltration, data tempering, etc. (CVE-2021-33516)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiagupnp0 (affected), 1.2.4-1.1.mga8 (unaffected)
Mageiagupnp0 (affected), 1.2.3-1.1.mga7 (unaffected)

References

Updated gupnp packages fix a security vulnerability
advisory
Updated gupnp packages fix a security vulnerability
issue
Updated gupnp packages fix a security vulnerability
advisory
Updated gupnp packages fix a security vulnerability
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›