Authorization Bypass

2020-08-0621:39:39

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.005 Low

EPSS

Percentile

77.5%

JSON

hostapd is vulnerable to authorization bypass. The vulnerability exists as the Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.

CPENameOperatorVersion
hostapd:3.12eq2.9-r1
hostapd:3.10eq2.8-r2
hostapd:3.11eq2.9-r1
hostapdeq2.7-r5
minidlna:bustereq1.2.1+dfsg-1+b2
minidlna:bustereq1.2.1+dfsg-1+b1
minidlna:3.12eq1.2.1-r1
minidlna:sideq1.2.1+dfsg-2
minidlna:bullseyeeq1.2.1+dfsg-2
minidlna:focaleq1.2.1+dfsg

Name	Operator	Version
hostapd:3.12	eq	2.9-r1
hostapd:3.10	eq	2.8-r2
hostapd:3.11	eq	2.9-r1
hostapd	eq	2.7-r5
minidlna:buster	eq	1.2.1+dfsg-1+b2
minidlna:buster	eq	1.2.1+dfsg-1+b1
minidlna:3.12	eq	1.2.1-r1
minidlna:sid	eq	1.2.1+dfsg-2
minidlna:bullseye	eq	1.2.1+dfsg-2
minidlna:focal	eq	1.2.1+dfsg