← back
CVE-2013-0230

CVE-2013-0230

EPSS 69.2%◆ VulnCheck KEV
Vexday Risk Score
72High priority
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 69.2%KEV nãoPoC públicaNuclei Metasploit simPatch
Lifecycle
31 Jan 2013Published on NVD
27 Mar 2013Metasploit module available
05 Jun 2013Public PoC
Weaponization speed
124 daysto first PoC
54 daysto Metasploit module
Recommendation: Patch as soon as possible — active exploitation confirmed.
Stack-based buffer overflow in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to execute arbitrary code via a long quoted method.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.