4 matches found
CVE-2021-31875
In mjsjson.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off-by-one heap-based buffer overflow in mjsjsonparse, which can potentially lead to redirection of control flow. NOTE: the original reporter disputes the significance of this finding because "there isn’t...
CVE-2021-31875
In mjsjson.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off-by-one heap-based buffer overflow in mjsjsonparse, which can potentially lead to redirection of control flow. NOTE: the original reporter disputes the significance of this finding because "there isn’t...
CVE-2021-31875
The CVE concerns Cesanta MongooseOS mJS 1.26, where a maliciously formed JSON string can trigger an off-by-one heap-based buffer overflow in mjs_json_parse. This may lead to redirection of control flow. Affected component: mjs_json_parse in mjs_json.c. Documented impact remains high (potential co...
CVE-2021-31875
In mjsjson.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off-by-one heap-based buffer overflow in mjsjsonparse, which can potentially lead to redirection of control flow. NOTE: the original reporter disputes the significance of this finding because "there isn’t...