CVE-2015-6031

Exp

Buffer overflow in the IGDstartelt function in igd_desc_parse.c in the MiniUPnP client (aka MiniUPnPc) before 1.9.20150917 allows remote UPNP servers to cause a denial of service (application crash) and possibly execute arbitrary code via an "oversized" XML element name.

Published: 2015-11-02 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]

Conclusion & alert: CVE-2015-6031 is rated High Exploit Risk (75.5/100): CVSS Medium severity, with high exploitation likelihood (EPSS 4.78%, 91th percentile). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +1.55% over the last day, indicating growing attacker interest. Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2015-6031

EDB-ID Source Kind Published Link
nvd_ref exploit_tag Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2015-6031

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 3.23% 4.78% +1.55%
2 2026-05-13 2.80% 3.23% +0.43%
3 2026-02-18 2.80%

Full EPSS history (24 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2015-6031

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
6.8 2.0 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:M)
Exploitation needs some favorable conditions, but not exceptional ones.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
8.6 6.4 [email protected]

Weakness enumeration for CVE-2015-6031

OS Trackers for CVE-2015-6031

vendor priority summary link
debian not yet assigned CVE-2015-6031 not yet assigned priority: Debian including 1 source packages (miniupnpc), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. https://security-tracker.debian.org/tracker/CVE-2015-6031
gentoo normal CVE-2015-6031: 1 GLSA(s) (201801-08), 1 atom(s) (net-libs/miniupnpc); latest impact normal. https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2015-6031
ubuntu medium CVE-2015-6031 medium priority: Ubuntu including 1 source packages (miniupnpc), 5 status rows across 5 suites (precise, trusty, upstream, vivid, wily): released 4, needs-triage 1. https://ubuntu.com/security/CVE-2015-6031

Affected software / configurations for CVE-2015-6031

Vendor Product Version Raw CPE
miniupnp_project miniupnpc <= 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:*:*:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-02-03:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-02-05:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-05-15:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-06-10:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-07-01:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-09-06:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-09-11:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-11-05:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-11-13:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2014-11-17:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-04-27:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-04-30:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-05-22:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-06-16:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-07-15:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-07-22:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-07-23:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-08-16:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-08-27:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-08-28:*:*:*:*:*:*
miniupnp_project miniupnpc 1.9 cpe:2.3:a:miniupnp_project:miniupnpc:1.9:2015-09-15:*:*:*:*:*:*
debian debian_linux 7.0 cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
debian debian_linux 8.0 cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
canonical ubuntu_linux 12.04 cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
canonical ubuntu_linux 14.04 cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
canonical ubuntu_linux 15.04 cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
opensuse leap 42.1 cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
opensuse opensuse 13.1 cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
opensuse opensuse 13.2 cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

References for CVE-2015-6031

cvelogic Threat Intelligence