cvedb.io
CVE-2023-33476
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2023-06-02T14:15:09.437 · Last modified 2026-06-17T06:01:47.847

Summary

ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic when handling HTTP requests using chunked transport encoding. This results in other code later using attacker-controlled chunk values that exceed the length of the allocated buffer, resulting in out-of-bounds read/write.

Affected products

readymedia_project — readymedia

Does this affect you?

Add your gear to cvedb and we'll alert you only when readymedia_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.