Lucene search

CVE-2021-26529

🗓️ 08 Feb 2021 21:13:15Reported by mitreType

The mg_tls_init function in Cesanta Mongoose HTTPS server is vulnerable to remote OOB write attack via connection request

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
CNVD	Cesanta Mongoose out-of-bounds write vulnerability (CNVD-2021-12086)	9 Feb 202100:00	–	cnvd
Prion	Design/Logic Flaw	8 Feb 202121:15	–	prion
OSV	CVE-2021-26529	8 Feb 202121:15	–	osv
NVD	CVE-2021-26529	8 Feb 202121:15	–	nvd
Cvelist	CVE-2021-26529	8 Feb 202120:13	–	cvelist
OpenVAS	Mongoose Web Server < 7.1 Multiple Vulnerabilities	15 Feb 202100:00	–	openvas

Nvd

Node

cesanta mongooseRange6.7–6.18

cesanta mongooseMatch7.0

Source	Link
github	www.github.com/cesanta/mongoose/issues/1203

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Feb 2021 21:15Current

9.2High risk

Vulners AI Score9.2

CVSS26.4

CVSS39.1

EPSS0.00334

CWE-787