exploitDog

GHSA-vqm5-gf2r-4jjf

Опубликовано: 18 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.

Ссылки

EPSS

Процентиль: 47%

0.00239

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-823

Связанные уязвимости

CVE-2024-42388

CVSS3: 5.3

nvd

около 1 года назад

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.

EPSS

Процентиль: 47%

0.00239

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-823