{"id":"CVE-2017-8798","details":"Integer signedness error in MiniUPnP MiniUPnPc v1.4.20101221 through v2.0 allows remote attackers to cause a denial of service or possibly have unspecified other impact.","modified":"2026-04-10T04:01:18.100970Z","published":"2017-05-11T01:29:06.210Z","related":["MGASA-2017-0313","openSUSE-SU-2024:11052-1","openSUSE-SU-2024:11055-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2020/04/msg00027.html"},{"type":"ADVISORY","url":"http://miniupnp.free.fr/files/changelog.php?file=miniupnpc-2.0.20170509.tar.gz"},{"type":"EVIDENCE","url":"https://github.com/tintinweb/pub/tree/master/pocs/cve-2017-8798"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/miniupnp/miniupnp","events":[{"introduced":"0"},{"last_affected":"8e5d55a7e87994433feae83927fabfcf93faa205"},{"introduced":"0"},{"last_affected":"9e24d3cccb2db5801f80edce94599ad807f135cf"},{"introduced":"0"},{"last_affected":"2e468c0b69283764d434b8914b4b65e98b52ea52"},{"introduced":"0"},{"last_affected":"370bf72e7282752e04e54ee9e5f13a80a95082f3"},{"introduced":"0"},{"last_affected":"510bff06bac02983f390a936a22f48aa5474b518"},{"introduced":"0"},{"last_affected":"1337158fcff401def996e211d5940c9f74f92b51"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.4"},{"introduced":"0"},{"last_affected":"1.5"},{"introduced":"0"},{"last_affected":"1.7"},{"introduced":"0"},{"last_affected":"1.8"},{"introduced":"0"},{"last_affected":"1.9"},{"introduced":"0"},{"last_affected":"2.0"}]}}],"versions":["minissdpd_1_2","minissdpd_1_4","minissdpd_1_5","miniupnpc_1_7","miniupnpc_1_8","miniupnpc_1_9","miniupnpc_2_0","miniupnpd_1_7","miniupnpd_1_8","miniupnpd_1_9","miniupnpd_2_0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-8798.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}