CVE-2020-23622

Name of the Vulnerable Software and Affected Versions 4thline cling versions 2.0.0 through 2.1.2

Description The issue in the UPnP protocol allows remote attackers to cause a denial of service via an unchecked CALLBACK parameter in the request header. As of 2022, 4thline cling is no longer supported by the maintainers.

Recommendations For versions 2.0.0 through 2.1.2, consider disabling the UPnP protocol to minimize the risk of exploitation until a patch is available, however, since 4thline cling is no longer supported, there is no information about a newer version that contains a fix for this issue.