📦

mpd

Vendor: mpd_project

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 2.38% Exploit Prob.

Latest CVE CVE-2020-7466 Oct 06

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2020-7466

The PPP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition.

EPSS: 1.74%

Severity: HIGH

Oct 06, 2020

9.8 CVSS

CVE-2020-7465

The L2TP implementation of MPD before 5.9 allows a remote attacker who can send specifically crafted L2TP control packet with AVP Q.931 Cause Code to execute arbitrary code or cause a denial of service (memory corruption).

EPSS: 3.01%

Severity: CRITICAL

Oct 06, 2020

Displaying 2 of 2 Total Entries

Total 1 Sections