Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cesanta vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-25887
Buffer overflow in mg_resolve_from_hosts_file in Mongoose 6.18, when reading from a crafted hosts file.
Cesanta Mongoose 6.18
5.5
CVSSv3
CVE-2021-46511
There is an Assertion `m->len >= sizeof(v)' failed at src/mjs_core.c in Cesanta MJS v2.20.0.
Cesanta Mjs 2.20.0
5.5
CVSSv3
CVE-2021-46514
There is an Assertion 'ppos != NULL && mjs_is_number(*ppos)' failed at src/mjs_core.c in Cesanta MJS v2.20.0.
Cesanta Mjs 2.20.0
5.5
CVSSv3
CVE-2021-46532
Cesanta MJS v2.20.0 exists to contain a SEGV vulnerability via exec_expr at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS).
Cesanta Mjs 2.20.0
5.5
CVSSv3
CVE-2021-46549
Cesanta MJS v2.20.0 exists to contain a SEGV vulnerability via parse_cval_type at src/mjs_ffi.c. This vulnerability can lead to a Denial of Service (DoS).
Cesanta Mjs 2.20.0
6.5
CVSSv3
CVE-2018-19587
In Cesanta Mongoose 6.13, a SIGSEGV exists in the mongoose.c mg_mqtt_add_session() function.
Cesanta Mongoose 6.13
9.8
CVSSv3
CVE-2023-43338
Cesanta mjs v2.20.0 exists to contain a function pointer hijacking vulnerability via the function mjs_get_ptr(). This vulnerability allows malicious users to execute arbitrary code via a crafted input.
Cesanta Mjs 2.20.0
7.5
CVSSv3
CVE-2023-49549
An issue in Cesanta mjs 2.20.0 allows a remote malicious user to cause a denial of service via the mjs_getretvalpos function in the msj.c file.
Cesanta Mjs 2.20.0
7.5
CVSSv3
CVE-2023-49550
An issue in Cesanta mjs 2.20.0 allows a remote malicious user to cause a denial of service via the mjs+0x4ec508 component.
Cesanta Mjs 2.20.0
7.5
CVSSv3
CVE-2023-49551
An issue in Cesanta mjs 2.20.0 allows a remote malicious user to cause a denial of service via the mjs_op_json_parse function in the msj.c file.
Cesanta Mjs 2.20.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »