CVE-2024-42388 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space...

CVE-2024-42387 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space...

CVE-2024-42387 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space...

CVE-2024-42387

CVE-2024-42387 concerns Cesanta Mongoose Web Server, version 7.14. The vulnerability arises from an out-of-range pointer offset in the library, which may allow an attacker to send an unexpected TLS packet and cause the application to read unintended heap memory space. Documents consistently descr...

CVE-2024-42386

CVE-2024-42386 affects Cesanta Mongoose Web Server library (v7.14). The vulnerability is described as an out-of-range pointer offset issue that allows an attacker to send an unexpected TLS packet and cause a segmentation fault in the application. The available connected sources confirm the affect...

CVE-2024-42386 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and produce a segmentation fault on the application...

CVE-2024-42386 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and produce a segmentation fault on the application...

CVE-2024-42383

The CVE-2024-42383 entry concerns Cesanta Mongoose Web Server v7.14. The vulnerability is described as an Out-of-range Pointer Offset that lets an attacker write a NULL byte beyond the memory space allocated for the hostname field. NVD lists CVSS v3.1 base score 9.8 (CRITICAL) with network attack...

CVE-2024-42383 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows to write a NULL byte value beyond the memory space dedicated for the hostname field...

CVE-2024-42383 Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows to write a NULL byte value beyond the memory space dedicated for the hostname field...

PT-2024-29917 · Cesanta · Cesanta Mongoose Web Server

Name of the Vulnerable Software and Affected Versions: Cesanta Mongoose Web Server version 7.14 Description: The issue allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space due to an Out-of-range Pointer Offset vulnerability...

Cesanta Mongoose Web Server 安全漏洞

Cesanta Mongoose Web Server is a cross-platform embedded server and web library written in C from Cesanta Ireland. A security vulnerability exists in Cesanta Mongoose Web Server version v7.14, which stems from the presence of an out-of-range pointer offset that allows a NULL byte value to be...

PT-2024-29914 · Cesanta · Cesanta Mongoose Web Server

Name of the Vulnerable Software and Affected Versions: Cesanta Mongoose Web Server version 7.14 Description: The issue involves an out-of-range pointer offset, allowing an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space. This can lead to...

CVE-2024-23377 Use of Out-of-range Pointer Offset in ComputerVision

Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver...

CVE-2024-23913

Use of Out-of-range Pointer Offset vulnerability in Merge DICOM Toolkit C/C++ on Windows. When deprecated MCXMLToMessage function is used to read a malformed DICOM XML file, it might result in memory access violation...

CVE-2024-23913

Use of Out-of-range Pointer Offset vulnerability in Merge DICOM Toolkit C/C++ on Windows. When deprecated MCXMLToMessage function is used to read a malformed DICOM XML file, it might result in memory access violation...

CVE-2024-23913

CVE-2024-23913 affects Merative Merge DICOM Toolkit C/C++ on Windows. Root cause: out-of-range pointer offset in the deprecated MC_XML_To_Message() when reading malformed DICOM XML, leading to a memory access violation (reported as a DoS-like condition). Affected versions: v5.6.0 through v5.17.0....

CVE-2024-23913

Use of Out-of-range Pointer Offset vulnerability in Merge DICOM Toolkit C/C++ on Windows. When deprecated MCXMLToMessage function is used to read a malformed DICOM XML file, it might result in memory access violation...

CVE-2023-43553 Use of Out-of-range Pointer Offset in WLAN HOST

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE...

CVE-2023-43553 Use of Out-of-range Pointer Offset in WLAN HOST

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE...