Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/06/30 6:23 a.m.6 views

CVE-2026-13503

A flaw was found in antlr ANTLR4. A remote attacker can exploit a path traversal vulnerability by manipulating the getImportedVocabFile function within the tokenVocab Grammar Option Handler component. This could allow unauthorized access to sensitive files and directories on the system. Mitigatio...

6.9CVSS5.9AI score0.0055EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/04/27 1:22 p.m.4 views

CVE-2026-6985

A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handleopt of the file /src/netbuiltin.c of the component TCP Option Handler. This manipulation of the argument optlen causes infinite loop. The attack is possible to be carried out remotely. The...

7.5CVSS5.4AI score0.00565EPSS
Exploits1References1
NVD
NVD
added 2026/04/25 5:16 p.m.5 views

CVE-2026-6985

A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handleopt of the file /src/netbuiltin.c of the component TCP Option Handler. This manipulation of the argument optlen causes infinite loop. The attack is possible to be carried out remotely. The...

7.5CVSS0.00565EPSS
Exploits1References5
OSV
OSV
added 2026/04/25 5:16 p.m.5 views

DEBIAN-CVE-2026-6985

A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handleopt of the file /src/netbuiltin.c of the component TCP Option Handler. This manipulation of the argument optlen causes infinite loop. The attack is possible to be carried out remotely. The...

7.5CVSS5.7AI score0.00565EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/25 4:15 p.m.9 views

CVE-2026-6985 Cesanta Mongoose TCP Option net_builtin.c handle_opt infinite loop

A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handleopt of the file /src/netbuiltin.c of the component TCP Option Handler. This manipulation of the argument optlen causes infinite loop. The attack is possible to be carried out remotely. The...

6.9CVSS5.4AI score0.00565EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/25 4:15 p.m.3 views

CVE-2026-6985

A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handleopt of the file /src/netbuiltin.c of the component TCP Option Handler. This manipulation of the argument optlen causes infinite loop. The attack is possible to be carried out remotely. The...

6.9CVSS5.4AI score0.00565EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVE
added 2026/04/25 4:15 p.m.6 views

CVE-2026-6985

A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handleopt of the file /src/netbuiltin.c of the component TCP Option Handler. This manipulation of the argument optlen causes infinite loop. The attack is possible to be carried out remotely. The...

7.5CVSS5.4AI score0.00565EPSS
Exploits1
Cvelist
Cvelist
added 2026/04/25 4:15 p.m.37 views

CVE-2026-6985 Cesanta Mongoose TCP Option net_builtin.c handle_opt infinite loop

A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handleopt of the file /src/netbuiltin.c of the component TCP Option Handler. This manipulation of the argument optlen causes infinite loop. The attack is possible to be carried out remotely. The...

6.9CVSS0.00565EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.5 views

PT-2026-35156

A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handle opt of the file /src/net builtin.c of the component TCP Option Handler. This manipulation of the argument optlen causes infinite loop. The attack is possible to be carried out remotely. T...

6.9CVSS5.1AI score0.00565EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/04/25 12:0 a.m.11 views

Cesanta Mongoose 安全漏洞

Cesanta Mongoose is a set of embedded server libraries developed by the Irish company Cesanta. It includes functions for TCP and HTTP clients and servers, as well as WenSocket clients and servers. Versions of Cesanta Mongoose 7.20 and earlier contained security vulnerabilities. These...

7.5CVSS6AI score0.00565EPSS
Exploits1References2
Rows per page
Query Builder