What Is UPnP and Why Is It a Security Risk?
ID: 086bff8f-a3b7-550a-8c9b-ed1771296ce1
STIX ID: report--086bff8f-a3b7-550a-8c9b-ed1771296ce1
Feed Name: SecurityScorecard Blog
Threat Score
This advisory details how Universal Plug and Play (UPnP) — designed for convenience — creates significant enterprise risk due to lack of authentication, silent port forwarding, and widespread misconfiguration; it cites historical exploits (Mirai botnet, EternalSilence, Flash UPnP), outlines detection methods (Nmap upnp-info, SSDP log inspection, external scans) and recommends mitigation steps such as disabling UPnP, blocking SSDP, segmenting IoT devices, and vendor controls.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.