exploitDog

GHSA-fj5v-9mxj-77qc

Опубликовано: 18 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 4

Описание

Improper Neutralization of Delimiters vulnerability in Cesanta Mongoose Web Server v7.14 allows to trigger an out-of-bound memory write if the PEM certificate contains unexpected characters.

Improper Neutralization of Delimiters vulnerability in Cesanta Mongoose Web Server v7.14 allows to trigger an out-of-bound memory write if the PEM certificate contains unexpected characters.

Ссылки

EPSS

Процентиль: 10%

0.00034

Низкий

4 Medium

CVSS3

CVE ID

Дефекты

CWE-140

Связанные уязвимости

CVE-2024-42385

CVSS3: 4

nvd

около 1 года назад

Improper Neutralization of Delimiters vulnerability in Cesanta Mongoose Web Server v7.14 allows to trigger an out-of-bound memory write if the PEM certificate contains unexpected characters.

EPSS

Процентиль: 10%

0.00034

Низкий

4 Medium

CVSS3

CVE ID

Дефекты

CWE-140