{"id":"CVE-2019-12109","details":"A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for rem_port.","modified":"2026-04-11T12:42:20.739450Z","published":"2019-05-15T23:29:00.713Z","references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2019/05/msg00045.html"},{"type":"WEB","url":"https://usn.ubuntu.com/4542-1/"},{"type":"FIX","url":"https://github.com/miniupnp/miniupnp/commit/13585f15c7f7dc28bbbba1661efb280d530d114c"},{"type":"FIX","url":"https://github.com/miniupnp/miniupnp/commit/86030db849260dd8fb2ed975b9890aef1b62b692"},{"type":"FIX","url":"https://www.vdoo.com/blog/security-issues-discovered-in-miniupnp"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/miniupnp/miniupnp","events":[{"introduced":"0"},{"last_affected":"582375b64f347d6ef1a4dc3478ff3678ea923f80"},{"fixed":"13585f15c7f7dc28bbbba1661efb280d530d114c"},{"fixed":"86030db849260dd8fb2ed975b9890aef1b62b692"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.1"}]}}],"versions":["minissdpd_1_2","minissdpd_1_4","miniupnpc_1_7","miniupnpc_1_8","miniupnpc_1_9","miniupnpc_2_1","miniupnpd_1_7","miniupnpd_1_8","miniupnpd_2_1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-12109.json","vanir_signatures_modified":"2026-04-11T12:42:20Z","vanir_signatures":[{"signature_type":"Function","digest":{"length":1325,"function_hash":"71234039086997178367485117544271644435"},"target":{"function":"GetOutboundPinholeTimeout","file":"miniupnpd/upnpsoap.c"},"id":"CVE-2019-12109-05bb41a2","deprecated":false,"signature_version":"v1","source":"https://github.com/miniupnp/miniupnp/commit/13585f15c7f7dc28bbbba1661efb280d530d114c"},{"signature_type":"Line","digest":{"line_hashes":["5593300419432615200973628329977550124","282311576490144500094238455818010610431","4122044120206916469799491856609136226"],"threshold":0.9},"target":{"file":"miniupnpd/upnpsoap.c"},"id":"CVE-2019-12109-cb43a28a","deprecated":false,"signature_version":"v1","source":"https://github.com/miniupnp/miniupnp/commit/13585f15c7f7dc28bbbba1661efb280d530d114c"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}