Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

15 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 8:53 a.m.4 views

CVE-2021-27425

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mmmalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS7.6AI score0.01981EPSS
Exploits0References1
OSV
OSVadded 2022/05/03 9:15 p.m.1 views

CVE-2021-27425

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mmmalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS6.1AI score0.01981EPSS
Exploits0References2
NVD
NVDadded 2022/05/03 9:15 p.m.13 views

CVE-2021-27425

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mmmalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS0.01981EPSS
Exploits0References2
Prion
Prionadded 2022/05/03 9:15 p.m.9 views

Integer overflow

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mmmalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

7.5CVSS9.6AI score0.01981EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/05/03 8:21 p.m.15 views

CVE-2021-27425 Cesanta Software Mongoose-OS Integer Overflow or Wraparound

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mmmalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

7.3CVSS9.8AI score0.01981EPSS
Exploits0References2
CVE
CVEadded 2022/05/03 8:21 p.m.67 views

CVE-2021-27425

CVE-2021-27425 affects Cesanta Software Mongoose-OS v2.17.0. The vulnerability is an integer wrap-around in mm_malloc that can cause improper memory assignment and arbitrary memory allocation, leading to a crash or remote code injection/execution. Public references (NVD/Red Hat/CVE list) corrobor...

9.8CVSS8.7AI score0.01981EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2022/05/03 8:21 p.m.4 views

CVE-2021-27425 Cesanta Software Mongoose-OS Integer Overflow or Wraparound

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mmmalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

7.3CVSS7.6AI score0.01981EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2021/11/17 12:0 a.m.1 views

The vulnerability in the implementation of the mm_malloc() function in the Mongoose OS operating system allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the mmmalloc function implementation in the Mongoose OS operating system is related to integer overflow. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code...

10CVSS8.1AI score0.01981EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologiesadded 2021/04/29 12:0 a.m.5 views

PT-2021-19559 · Cesanta · Mongooseos Mjs

Name of the Vulnerable Software and Affected Versions: Cesanta MongooseOS mJS version 1.26 Description: A maliciously formed JSON string can trigger an off-by-one heap-based buffer overflow in mjs json parse, potentially leading to redirection of control flow. The original reporter disputes the...

9.8CVSS7.5AI score0.00611EPSS
Exploits1References8
CNVD
CNVDadded 2017/04/12 12:0 a.m.3 views

Cesanta Mongoose Embedded Web Server Library and Mongoose OS Memory Misreference Vulnerability

Cesanta Mongoose Embedded Web Server Library and Mongoose OS are both products of the American company Cesanta. The former is a web library for embedded web servers; the latter is an open source operating system for the Internet of Things. A memory misreference exists in the...

7.5CVSS7.6AI score0.3325EPSS
Exploits5References1
CVE
CVEadded 2017/04/10 3:0 p.m.59 views

CVE-2017-7185

CVE-2017-7185 is a use-after-free in Cesanta’s Mongoose Embedded Web Server Library (mg_http_multipart_wait_for_boundary) affecting versions<=6.7 and Mongoose OS

7.5CVSS7.2AI score0.3325EPSS
Exploits5References6Affected Software2
Exploit DB
Exploit DBadded 2017/04/06 12:0 a.m.74 views

Cesanta Mongoose OS - Use-After-Free

COMPASS SECURITY ADVISORY https://www.compass-security.com/en/research/advisories/ Product: Mongoose OS Vendor: Cesanta CVE ID: CVE-2017-7185 CSNC ID: CSNC-2017-003 Subject: Use-after-free / Denial of Service Risk: Medium Effect: Remotely exploitable Authors: Philipp Promeuschel Carel van Rooyen...

7.5CVSS7.6AI score0.3325EPSS
Exploits5
exploitpack
exploitpackadded 2017/04/06 12:0 a.m.34 views

Cesanta Mongoose OS - Use-After-Free

Cesanta Mongoose OS - Use-After-Free COMPASS SECURITY ADVISORY https://www.compass-security.com/en/research/advisories/ Product: Mongoose OS Vendor: Cesanta CVE ID: CVE-2017-7185 CSNC ID: CSNC-2017-003 Subject: Use-after-free / Denial of Service Risk: Medium Effect: Remotely exploitable Authors:...

5CVSS0.3325EPSS
Exploits5
0day.today
0day.todayadded 2017/04/06 12:0 a.m.83 views

Cesanta Mongoose OS - Use-After-Free Vulnerability

Exploit for hardware platform in category dos / poc Product: Mongoose OS Vendor: Cesanta CVE ID: CVE-2017-7185 CSNC ID: CSNC-2017-003 Subject: Use-after-free / Denial of Service Risk: Medium Effect: Remotely exploitable Authors: Philipp Promeuschel Carel van Rooyen Stephan Sekula Date: 2017-04-03...

5CVSS7.6AI score0.3325EPSS
Exploits5
Packet Storm
Packet Stormadded 2017/04/03 12:0 a.m.62 views

Mongoose OS 1.2 Use-After-Free / Denial Of Service

COMPASS SECURITY ADVISORY https://www.compass-security.com/en/research/advisories/ Product: Mongoose OS Vendor: Cesanta CVE ID: CVE-2017-7185 CSNC ID: CSNC-2017-003 Subject: Use-after-free / Denial of Service Risk: Medium Effect: Remotely exploitable Authors: Philipp Promeuschel Carel van Rooyen...

0.1AI score0.3325EPSS
Exploits5
Rows per page
Query Builder