公告ID: KYLIN-2020-12695
安全等级: 中等
产品: Kylin V3
发布日期: 2020年6月8日
CVE: CVE-2020-12695
CVSS3评分: 7.5
概述:
None 描述:
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. 系统版本:
KYLIN 3.0.x
KYLIN 3.2.x
KYLIN 3.2.x
KYLIN 3.3.x
KYLIN 3.3.x
KYLIN 3.4.x
KYLIN 3.4.x
受影响包列表:
wpa_supplicant
gupnp
wpa_supplicant
gupnp
wpa_supplicant
gupnp
wpa_supplicant