Severity
High
Analysis Summary
A vulnerability in the UPnP SUBSCRIBE capability permits an attacker to send large amounts of data to arbitrary destinations accessible over the Internet, which could lead to a Distributed Denial of Service (DDoS), data exfiltration, and other unexpected network behavior.
Impact
- Data Exfiltration
- DDoS
Remediation
Refer to vendor’s advisory for the complete list of affected products and upgraded patches