Critical severity9.8NVD Advisory· Published Nov 18, 2024· Updated Apr 15, 2026
CVE-2015-20111
CVE-2015-20111
Description
miniupnp before 4c90b87, as used in Bitcoin Core before 0.12 and other products, lacks checks for snprintf return values, leading to a buffer overflow and significant data leak, a different vulnerability than CVE-2019-12107. In Bitcoin Core before 0.12, remote code execution was possible in conjunction with CVE-2015-6031 exploitation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: < 4c90b87
- Range: < 0.12
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.