Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cesanta vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2021-26530
The mg_tls_init function in Cesanta Mongoose HTTPS server 7.0 (compiled with OpenSSL support) is vulnerable to remote OOB write attack via connection request after exhausting memory pool.
Cesanta Mongoose 7.0
8.8
CVSSv3
CVE-2020-25887
Buffer overflow in mg_resolve_from_hosts_file in Mongoose 6.18, when reading from a crafted hosts file.
Cesanta Mongoose 6.18
6.5
CVSSv3
CVE-2018-19587
In Cesanta Mongoose 6.13, a SIGSEGV exists in the mongoose.c mg_mqtt_add_session() function.
Cesanta Mongoose 6.13
5.5
CVSSv3
CVE-2021-46508
There is an Assertion `i < parts_cnt' failed at src/mjs_bcode.c in Cesanta MJS v2.20.0.
Cesanta Mjs 2.20.0
7.8
CVSSv3
CVE-2021-46509
Cesanta MJS v2.20.0 exists to contain a stack overflow via snquote at mjs/src/mjs_json.c.
Cesanta Mjs 2.20.0
5.5
CVSSv3
CVE-2021-46510
There is an Assertion `s < mjs->owned_strings.buf + mjs->owned_strings.len' failed at src/mjs_gc.c in Cesanta MJS v2.20.0.
Cesanta Mjs 2.20.0
5.5
CVSSv3
CVE-2021-46511
There is an Assertion `m->len >= sizeof(v)' failed at src/mjs_core.c in Cesanta MJS v2.20.0.
Cesanta Mjs 2.20.0
7.8
CVSSv3
CVE-2021-46525
Cesanta MJS v2.20.0 exists to contain a heap-use-after-free via mjs_apply at src/mjs_exec.c.
Cesanta Mjs 2.20.0
7.8
CVSSv3
CVE-2021-46526
Cesanta MJS v2.20.0 exists to contain a global buffer overflow via snquote at src/mjs_json.c.
Cesanta Mjs 2.20.0
7.8
CVSSv3
CVE-2021-46527
Cesanta MJS v2.20.0 exists to contain a heap buffer overflow via mjs_get_cstring at src/mjs_string.c.
Cesanta Mjs 2.20.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27842
CVE-2024-30657
CVE-2024-4534
hardcoded
SSRF
CVE-2024-21683
CVE-2024-5364
file upload
CVE-2024-5371
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »