Detections
Analytics

Internet Gateway Device WAN Interface UPnP Access

medium Nessus Plugin ID 35710

Language:

Synopsis

The remote IGD router can be configured on its WAN interface.

Description

Nessus was able to add 'port mappings' to the remote IGD router by sending a SOAP request to its external interface.

Solution

Restrict external access to this device.

Plugin Details

Severity: Medium

ID: 35710

File Name: upnp_igd_wan_reachable.nasl

Version: Revision: 1.8

Type: remote

Family: Misc.

Published: 2/19/2009

Updated: 10/13/2016

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:P

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Vulnerability Information

Required KB Items: upnp/igd_add_port_mapping