8 matches found
CVE-2019-19307
An integer overflow in parsemqtt in mongoose.c in Cesanta Mongoose 6.16 allows an attacker to achieve remote DoS infinite loop, or possibly cause an out-of-bounds write, by sending a crafted MQTT protocol packet...
CVE-2019-19307
CVE-2019-19307 affects Cesanta Mongoose 6.16. The vulnerability is an integer overflow in the parse_mqtt function in mongoose.c that can be triggered by a crafted MQTT protocol packet, leading to remote denial of service (infinite loop) and possibly an out-of-bounds write. Reports from multiple s...
CVE-2019-12951
An issue was discovered in Mongoose before 6.15. The parsemqtt function in mgmqtt.c has a critical heap-based buffer overflow...
CVE-2019-12951
An issue was discovered in Mongoose before 6.15. The parsemqtt function in mgmqtt.c has a critical heap-based buffer overflow...
Heap overflow
An issue was discovered in Mongoose before 6.15. The parsemqtt function in mgmqtt.c has a critical heap-based buffer overflow...
CVE-2019-12951
CVE-2019-12951 affects Cesanta Mongoose prior to 6.15. The vulnerability is a heap-based buffer overflow in the parse_mqtt() function (mg_mqtt.c) that can corrupt memory and enable crashes or potential exploitation. The issue is triggered by handling crafted MQTT inputs and is documented as a cri...
CVE-2019-12951
An issue was discovered in Mongoose before 6.15. The parsemqtt function in mgmqtt.c has a critical heap-based buffer overflow...
CVE-2019-12951
An issue was discovered in Mongoose before 6.15. The parsemqtt function in mgmqtt.c has a critical heap-based buffer overflow...