3 matches found
Mongoose Web Server <= 6.13 Multiple Vulnerabilities
Mongoose Web Server is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...
CVE-2018-18765
An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in mgmqttnextsubscribetopic. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially...
CVE-2018-18765
The CVE-2018-18765 entry concerns Cesanta Mongoose 6.13, where the MQTT packet-parsing function mg_mqtt_next_subscribe_topic is affected by a heap-based buffer over-read. This vulnerability allows an attacker to trigger an arbitrary out-of-bounds memory read over the network via a crafted MQTT SU...