CVE-2022-26505

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/03/2022
Last modified:
25/11/2023

Description

A DNS rebinding issue in ReadyMedia (formerly MiniDLNA) before 1.3.1 allows a remote web server to exfiltrate media files.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:readymedia_project:readymedia:*:*:*:*:*:*:*:* 1.3.1 (excluding)
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*