{"id":"CVE-2019-12108","details":"A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for int_port.","modified":"2026-05-17T03:54:34.765069276Z","published":"2019-05-15T23:29:00.607Z","database_specific":{},"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2019/05/msg00045.html"},{"type":"WEB","url":"https://usn.ubuntu.com/4542-1/"},{"type":"FIX","url":"https://github.com/miniupnp/miniupnp/commit/13585f15c7f7dc28bbbba1661efb280d530d114c"},{"type":"FIX","url":"https://github.com/miniupnp/miniupnp/commit/86030db849260dd8fb2ed975b9890aef1b62b692"},{"type":"FIX","url":"https://www.vdoo.com/blog/security-issues-discovered-in-miniupnp"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}