CVE-2026-5720 | miniupnp project miniupnpd up to 2.3.9 HTTP Request ParseHttpHeaders integer underflow

Inserito da Angelo Barbosa | Apr 17, 2026 | CVE

A vulnerability, which was classified as critical, has been found in miniupnp project miniupnpd up to 2.3.9. This affects the function ParseHttpHeaders of the component HTTP Request Handler. This manipulation causes integer underflow.

This vulnerability is registered as CVE-2026-5720. The attack requires access to the local network. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-5720 | miniupnp project miniupnpd up to 2.3.9 HTTP Request ParseHttpHeaders integer underflow

Post correlati

CVE-2024-23588 | HCL Nomad Server up to 1.0.11 on Domino denial of service (KB0114193)

CVE-2025-4646 | Centreon Web up to 24.04.9/24.10.3 API Token Creation Form Module privileges management

CVE-2025-1851 | Tenda AC7 up to 15.03.06.44 /goform/SetFirewallCfg formSetFirewallCfg firewallEn stack-based overflow

CVE-2020-36836 | emrevona WP Fastest Cache Plugin up to 0.9.0.2 on WordPress Path Validation cross-site request forgery (ID 2235160)