Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.15 views

Mongoose Web Server <= 6.13 Multiple Vulnerabilities

Mongoose Web Server is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

9.1CVSS8AI score0.01835EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2018/11/05 7:51 p.m.28 views

CVE-2018-18764

An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in a parsemqtt getu16 call. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially...

9.1CVSS3.5AI score0.01835EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2018/10/29 12:29 p.m.17 views

CVE-2018-18764

An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in a parsemqtt getu16 call. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially...

9.1CVSS7.3AI score0.01835EPSS
Exploits1References1
CVE
CVE
added 2018/10/28 7:0 p.m.65 views

CVE-2018-18764

CVE-2018-18764 : Cesanta Mongoose 6.13 contains a heap-based buffer over-read in the MQTT packet-parsing function (parse_mqtt getu16). A specially crafted MQTT SUBSCRIBE packet over the network can trigger an arbitrary out-of-bounds memory read, potentially leading to information disclosure and d...

9.1CVSS8.8AI score0.01835EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder