Description
The UPnP IGD implementation in Broadcom Linux on the Sitecom WL-111 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.
References (2)
Core 2
Core References
Various Sources x_refsource_misc
http://www.upnp-hacks.org/suspect.html
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/357851
Scores
EPSS
0.0074
EPSS Percentile
73.1%
Details
CWE
CWE-16
Status
published
Products (2)
broadcom/broadcom_linux
sitecom/wl-111
Published
Nov 22, 2011
Tracked Since
Feb 18, 2026