CVE-2018-15506

Name of the Vulnerable Software and Affected Versions BubbleUPnP version 0.9 update 30

Description The XML parsing engine for SSDP/UPnP functionality in the affected software is vulnerable to an XML External Entity Processing (XXE) attack. This allows remote, unauthenticated attackers to access arbitrary files from the filesystem with the same permission as the user account running the software. Additionally, attackers can initiate SMB connections to capture a NetNTLM challenge/response and crack the cleartext password, or relay a NetNTLM challenge/response to achieve Remote Command Execution in Windows domains.

Recommendations For BubbleUPnP version 0.9 update 30, consider disabling the XML parsing engine for SSDP/UPnP functionality until a patch is available. Restrict access to sensitive files and directories to minimize the risk of exploitation. Avoid using the software in environments where Remote Command Execution could have significant consequences. At the moment, there is no information about a newer version that contains a fix for this vulnerability.