2 matches found
CVE-2018-20355
An invalid write of 8 bytes due to a use-after-free vulnerability in the mghttpfreeprotodatacgi function call in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service application crash or remote code execution...
CVE-2018-20355
The CVE-2018-20355 issue affects Cesanta Mongoose Embedded Web Server Library 6.13 and earlier. A use-after-free in mg_http_free_proto_data_cgi within mongoose.c leads to an invalid write of 8 bytes, enabling either application crash (DoS) or remote code execution. The vulnerability details indic...