high
7.8
CWE
276
Advisory Published
Updated

CVE-2020-12695

First published: Mon Jun 08 2020(Updated: )

Last updated 24 July 2024

Credit: cve@mitre.org cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
debian/minidlna<=1.2.1+dfsg-2<=1.2.1+dfsg-1
1.2.1+dfsg-2+deb10u1
1.2.1+dfsg-3
debian/gupnp
1.2.4-1
1.6.3-1
1.6.6-1
debian/minidlna
1.3.0+dfsg-2+deb11u2
1.3.0+dfsg-2.2+deb12u1
1.3.3+dfsg-1.1
debian/pupnp
1:1.14.19-2
debian/pupnp-1.8<=1:1.8.4-2
debian/wpa
2:2.9.0-21+deb11u2
2:2.10-12+deb12u2
2:2.10-22
Ubiquiti UniFi Controller
hostapd<2.0.0
Asus RT-N11
Broadcom ADSL
Canon Selphy CP1200
Cisco WAP131 Firmware
Cisco WAP150
Cisco WAP351 Firmware
D-Link DVG-N5412SP
Dell B1165nfw
Epson EP-101
Epson EW-M970A3T
Epson M571T
Epson XP-100
Epson XP-2101
Epson XP-2105
Epson XP-241
Epson XP-320
Epson XP-330
Epson XP-340
Epson Expression Home XP-4100
Epson XP-4105
Epson Expression Premium XP-440
Epson XP-620
Epson XP-630
Epson XP-702
Epson Expression Premium XP-8500
Epson XP-8600
Epson Expression Premium XP-960
Epson XP-970
HP 5020
HP 5030
HP 5030
HP 5034
HP 5660
HP DeskJet Ink Advantage 3456
HP DeskJet Ink Advantage 3545
HP DeskJet Ink Advantage 3545
HP DeskJet Ink Advantage 3545
HP DeskJet Ink Advantage 3546
HP DeskJet Ink Advantage 3548
HP DeskJet Ink Advantage 4515
HP DeskJet Ink Advantage 4518
HP DeskJet Ink Advantage 4535
HP DeskJet Ink Advantage 4535
HP DeskJet Ink Advantage 4535
HP DeskJet Ink Advantage 4536
HP DeskJet Ink Advantage 4538
HP DeskJet Ink Advantage 4675
HP DeskJet Ink Advantage 4675
HP DeskJet Ink Advantage 4675
HP DeskJet Ink Advantage 4676
HP DeskJet Ink Advantage 4678
HP DeskJet Ink Advantage 5575
HP DeskJet Ink Advantage 5575
HP Envy 100
HP Envy 100
HP Envy 100
HP Envy 100
HP Envy 100
HP Envy 100
HP Envy 110
HP Envy 110
HP Envy 110
HP Envy 110
HP Envy 110
HP Envy 111 CQ810A
HP Envy 114
HP Envy 114
HP Envy 114
HP Envy 120
HP Envy 120
HP Envy 120
HP Envy 4500
HP Envy 4500
HP Envy 4500
HP Envy 4500
HP Envy 4501
HP Envy 4502
HP Envy 4502
HP Envy 4503
HP Envy 4504
HP Envy 4504
HP Envy 4505
HP Envy 4507
HP Envy 4508
HP Envy 4509
HP Envy 4509
HP Envy 4511
HP Envy 4512
HP Envy 4513
HP Envy 4516
HP Envy 4520
HP Envy 4520
HP Envy 4520
HP Envy 4520
HP Envy 4520
HP Envy 4521
HP Envy 4522
HP Envy 4523
HP Envy 4524
HP Envy 4524
HP Envy 4524
HP Envy 4525
HP Envy 4526
HP Envy 4527
HP Envy 4528
HP Envy 5000 M2U85A Firmware
HP Envy 5000 m2u85b Firmware
HP Envy 5000 M2U91A Firmware
HP Envy 5000 M2U91A Firmware
HP Envy 5000 Firmware
HP Envy 5000 Firmware
HP Envy 5000 Z4A74A Firmware
HP Envy 5020
HP Envy 5530
HP Envy 5531
HP Envy 5532
HP Envy 5534
HP Envy 5535
HP Envy 5536
HP Envy 5539
HP Envy 5540
HP Envy 5540
HP Envy 5540
HP Envy 5540
HP Envy 5540
HP Envy 5540
HP Envy 5541
HP Envy 5542 All-in-One Printer
HP Envy 5543
HP Envy 5544
HP Envy 5544
HP Envy 5545
HP Envy 5546
HP Envy 5547
HP Envy 5548
HP Envy 5640
HP Envy 5640
HP Envy 5642
HP Envy 5643
HP Envy 5644
HP Envy 5646
HP Envy 5664
HP Envy 5665
HP Envy 6020
HP Envy 6020
HP Envy 6020
HP Envy 6020
HP Envy 6052
HP Envy 6055
HP Envy 6540
HP Envy 7640
HP Envy 7644
HP Envy 7645
HP Envy Photo 6200
HP Envy Photo 6200
HP ENVY Photo 6200
HP Envy Photo 6200
HP Envy Photo 6200
HP Envy Photo 6220
HP Envy Photo 6220
HP Envy Photo 6222
HP Envy Photo 6222
HP Envy Photo 6230
HP Envy Photo 6232
HP Envy Photo 6234
HP Envy Photo 6252
HP Envy Photo 7100
HP Envy Photo 7100
HP Envy Photo 7100
HP ENVY Photo 7100
HP ENVY Photo 7100
HP Envy Photo 7120
HP Envy Photo 7155
HP Envy Photo 7164
HP Envy Photo 7800
HP Envy Photo 7800
HP ENVY Photo 7800
HP ENVY Photo 7800
HP Envy Photo 7800
HP Envy Photo 7822
HP Envy Photo 7822
HP Envy Photo 7830
HP Envy Pro 6420
HP Envy Pro 6420
HP Envy Pro 6420
HP Envy Pro 6420
HP Envy Pro 6452
HP Envy Pro 6455
HP DeskJet Ink Advantage 4535
HP DeskJet Ink Advantage 4535
HP DeskJet Ink Advantage 4535
HP DeskJet Ink Advantage 4536
HP DeskJet Ink Advantage 4538
HP DeskJet Ink Advantage 4675
HP DeskJet Ink Advantage 4675
HP DeskJet Ink Advantage 4675
HP DeskJet Ink Advantage 4676
HP DeskJet Ink Advantage 4678
HP Envy 4511
HP Envy 4512 K9H49A
HP Envy 4513
HP Envy 4516
HP Envy 4520
HP Envy 4520
HP Envy 4520
HP Envy 4520
HP Envy 4520
HP Envy 4521
HP Envy 4522
HP Envy 4523
HP Envy 4524
HP Envy 4524
HP Envy 4524
HP Envy 4525
HP Envy 4526
HP Envy 4527
HP Envy 4528
HP OfficeJet 4650
HP OfficeJet 4650
HP OfficeJet 4650
HP OfficeJet 4652
HP OfficeJet 4652
HP OfficeJet 4652
HP OfficeJet 4654
HP OfficeJet 4654
HP OfficeJet 4655
HP OfficeJet 4655
HP OfficeJet 4655
HP OfficeJet 4656
HP OfficeJet 4657
HP OfficeJet 4658
HP OfficeJet 4650
HP OfficeJet 4650
HP OfficeJet 4650
HP OfficeJet 4652
HP OfficeJet 4652
HP OfficeJet 4652
HP OfficeJet 4654
HP OfficeJet 4654
HP OfficeJet 4655
HP OfficeJet 4655
HP OfficeJet 4655
HP OfficeJet 4656
HP OfficeJet 4657
HP OfficeJet 4658
Huawei Hg255s Firmware
Huawei HG532e
NEC Aterm WR8165N
Netgear WNHDE111
Ruckus Wireless ZoneDirector 1200
TP-Link Archer C50 V3
ZTE ZXV10 W300 Firmware
Zyxel AMG1202-T10B
Zyxel VMG8324-B10A
Windows 10
Xbox=10.0.19041.2494
Red Hat Fedora=31
Red Hat Fedora=32
Debian Linux=9.0
Debian Linux=10.0
Ubuntu=20.04

Remedy

https://w1.fi/security/2020-1/0001-WPS-UPnP-Do-not-allow-event-subscriptions-with-URLs-.patch

Remedy

https://w1.fi/security/2020-1/0002-WPS-UPnP-Fix-event-message-generation-using-a-long-U.patch

Remedy

https://w1.fi/security/2020-1/0003-WPS-UPnP-Handle-HTTP-initiation-failures-for-events-.patch

Remedy

https://github.com/pupnp/pupnp/pull/181/commits/5f76bf2858dd601bd985bf37a1db9f262c0ff7bf

Remedy

https://github.com/pupnp/pupnp/commit/7b3f0f5f497f9f493c82307af495b87fa9ebdacb

Remedy

https://github.com/pupnp/pupnp/commit/bf66031c5455c94391dd12d297c251112c64e46d

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2020-12695?

    CVE-2020-12695 is rated as high severity due to the potential for unauthorized access to system resources through a cross-network attack.

  • How do I fix CVE-2020-12695?

    To remediate CVE-2020-12695, update the affected software packages to versions that have addressed this vulnerability.

  • What software is affected by CVE-2020-12695?

    CVE-2020-12695 impacts several software packages including minidlna, gupnp, and others as listed in the vulnerability report.

  • What are the consequences of exploitation of CVE-2020-12695?

    Exploitation of CVE-2020-12695 could allow an attacker to receive event notifications intended for other devices, potentially leading to information leakage.

  • Is there a specific patch for CVE-2020-12695?

    Yes, specific patches are available for the affected software, which should be applied to prevent exploitation of CVE-2020-12695.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203