Mpd ProjectCVEs & Vulnerabilities
2 CVEs affecting Mpd Project products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
mpd 2
CVE-2020-7466HIGH
The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition.
6 Oct 2020
7.5
CVSS
CVE-2020-7465CRITICAL
The L2TP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted L2TP control packet with AVP Q.931 Cause Code to execute arbitrary code or cause a denial of service (memory corruption).
6 Oct 2020
9.8
CVSS
← PrevPage 1 / 1Next →