CVE-2026-5720— miniupnpd Integer Underflow SOAPAction Header Parsing
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-5720
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
miniupnpd Integer Underflow SOAPAction Header Parsing
Source: NVD (National Vulnerability Database)
Vulnerability Description
miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attackers to cause a denial of service or information disclosure by sending a malformed SOAPAction header with a single quote. Attackers can trigger an out-of-bounds memory read by exploiting improper length validation in ParseHttpHeaders(), where the parsed length underflows to a large unsigned value when passed to memchr(), causing the process to scan memory far beyond the allocated HTTP request buffer.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
整数下溢(超界折返)
Source: NVD (National Vulnerability Database)
Vulnerability Title
MiniUPnP 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MiniUPnP是Miniupnp项目的一套可以用于嵌入式系统的UPnP工具。该工具可实现家庭网络和公司网络中的设备相互连接。 MiniUPnP存在安全漏洞,该漏洞源于SOAPAction标头解析存在整数下溢,可能导致远程攻击者通过发送畸形SOAPAction标头触发越界内存读取,造成拒绝服务或信息泄露。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| miniupnp project | miniupnpd | 0 ~ 2.3.10 | - |
II. Public POCs for CVE-2026-5720
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-5720
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same weakness: CWE-191
- CVE-2026-7736
osrg GoBGP mrt.go parseRibEntry integer underflow - CVE-2026-33845
Gnutls: gnutls: denial of service via dtls zero-length fragm - CVE-2026-7424
Integer Underflow in DHCPv6 Sub-Option Parser in FreeRTOS-Pl - CVE-2026-7423
Integer Underflow in ICMP Echo Reply Processing in FreeRTOS- - CVE-2026-6914
MD5 checksum creation may cause availability loss
V. Comments for CVE-2026-5720
No comments yet