EUVD-2026-18183

🗓️ 02 Apr 2026 12:31:05Reported by EUVDType

A stack-based buffer overflow in Cesanta Mongoose up to 7.20 via handle_mdns_record; upgrade to 7.21.

Reporter	Title	Published	Views	Family All 14
ATTACKERKB	CVE-2026-5245	2 Apr 202609:00	–	attackerkb
Circl	CVE-2026-5245	2 Apr 202610:01	–	circl
CNNVD	Cesanta Mongoose 安全漏洞	2 Apr 202600:00	–	cnnvd
CVE	CVE-2026-5245	2 Apr 202609:00	–	cve
Cvelist	CVE-2026-5245 Cesanta Mongoose mDNS Record mongoose.c handle_mdns_record stack-based overflow	2 Apr 202609:00	–	cvelist
Debian CVE	CVE-2026-5245	2 Apr 202609:00	–	debiancve
NVD	CVE-2026-5245	2 Apr 202610:16	–	nvd
OSV	DEBIAN-CVE-2026-5245	2 Apr 202610:16	–	osv
OSV	JLSEC-2026-370 A vulnerability was found in Cesanta Mongoose up to 7.20. This impacts the function...	30 Apr 202619:30	–	osv
OSV	UBUNTU-CVE-2026-5245	15 Jun 202600:00	–	osv

[
  {
    "enisaIdVendor": [
      {
        "id": "cad40bfd-e745-3050-842b-2efcb6c72ff5",
        "vendor": {
          "name": "Cesanta"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "08191160-9d69-38b5-8ca7-69bae85ca2ae",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.14"
      },
      {
        "id": "1a8e53ad-dd2d-37e5-9b7c-d84fc0bd6e80",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.20"
      },
      {
        "id": "1d04e69b-0b8d-3003-9660-055718b80d33",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.0"
      },
      {
        "id": "21e79083-b9a7-3389-a6aa-1bb591756815",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.4"
      },
      {
        "id": "27e966fe-50e6-3799-baf7-2967c71649d0",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.6"
      },
      {
        "id": "2981f9c6-c57f-30da-8647-3a841dc88d86",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.11"
      },
      {
        "id": "2b3a41bf-4943-3ffd-96f0-719481e5143c",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.2"
      },
      {
        "id": "3e462506-606b-3bc3-a04a-2454bc41786c",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.19"
      },
      {
        "id": "4ab5274c-6399-3e80-b3bc-90b4ed1c8b8b",
        "product": {
          "name": "Mongoose"
        },
        "product_version": ""
      },
      {
        "id": "647481d0-c1ea-30d4-8374-c96e6f2c4ce2",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.3"
      },
      {
        "id": "7e21b991-e0c6-3100-a218-c1d003740712",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.10"
      },
      {
        "id": "93fbd001-c5a8-3ab2-ae35-054e6d1a4bca",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.13"
      },
      {
        "id": "9d551b26-f8a4-34ec-b352-ec7d851f173b",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.16"
      },
      {
        "id": "a6ec580c-f816-377b-be7f-b50dd40acb9f",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.9"
      },
      {
        "id": "a9556f80-17c8-32d1-bcd1-698c23d30c8b",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.7"
      },
      {
        "id": "b2ba3c64-2767-3d0d-896a-c772efe48042",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.12"
      },
      {
        "id": "c98a136e-4f76-305d-8382-4527930c6ce7",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.18"
      },
      {
        "id": "cd4a04b6-f393-37fd-93d9-2c8e731c9126",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.17"
      },
      {
        "id": "f19ae987-a768-3215-84d2-1238f043e135",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.8"
      },
      {
        "id": "f5b02ead-8a61-3e5e-bf6e-05bc40437d3e",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.1"
      },
      {
        "id": "fc178162-b71a-37e0-ad6a-321c90e8d8a9",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.15"
      },
      {
        "id": "fc40e188-d8f4-373a-a47a-5d4149ee61cf",
        "product": {
          "name": "Mongoose"
        },
        "product_version": "7.5"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/vuln/354826
vuldb	www.vuldb.com/vuln/354826/cti
vuldb	www.vuldb.com/submit/770103
github	www.github.com/cesanta/mongoose/commit/0d882f1b43ff2308b7486a56a9d60cd6dba8a3f1
github	www.github.com/cesanta/mongoose/releases/tag/7.21
github	www.github.com/cesanta/mongoose/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-5245

02 Apr 2026 12:31Current

5.8Medium risk

Vulners AI Score5.8

CVSS 46.3

CVSS 25.1

CVSS 3.15.6

CVSS 35.6

EPSS0.00716

SSVC