USN-4722-1: ReadyMedia (MiniDLNA) vulnerabilities
USN-4722-1: ReadyMedia (MiniDLNA) vulnerabilities It was discovered that ReadyMedia (MiniDLNA) allowed subscription requests with a delivery URL on a different network segment than the fully qualified event- subscription URL. An attacker could use this to hijack smart devices and cause denial of service attacks. (CVE-2020-12695) It was discovered that ReadyMedia (MiniDLNA) allowed remote code execution. A remote attacker could send a malicious UPnP HTTP request to the service using HTTP chunked encoding and cause a denial of service. (CVE-2020-28926) Source: USN-4722-1: ReadyMedia (MiniDLNA) vulnerabilities