6 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-51495
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can...
EUVD-2025-31586
Malicious code in bioql PyPI...
CVE-2025-51495
A vulnerability was identified in the WebSocket component of Mongoose package versions 7.5 through 7.17. An attacker can exploit this flaw by sending a specially crafted request to a targeted application. Successful exploitation results in the application crashing, creating a denial of service. I...
CVE-2025-51495
CVE-2025-51495 affects the WebSocket component of Mongoose versions 7.5 through 7.17 . A vulnerability in the WebSocket handling can trigger an integer overflow when processing a specially crafted request, potentially causing the application to crash (denial of service). In cases where downstream...
CVE-2025-51495
An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can cause the application to crash. If downstream vendors integrate this component improperly, the issue may lead to a buffer overflow...
Cesanta Mongoose Websocket Protocol Packet Length Code Execution Vulnerability
Summary An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of Cesanta Mongoose 6.8. A specially crafted websocket packet can cause an integer overflow resulting leading to heap buffer overflow resulting in denial of service and potential remote code...