Approved changes feed: RSS · Atom

cpe:2.3:a:cesanta:mongoose_web_server:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorCesanta (91223ef9-9be1-51ca-9999-b3190ce9965d)
ProductMongoose Web Server (39cbf548-a61f-5525-9c82-69624f363c9c)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-42392 vulnerable 2026-06-08 06:43:56.575368 Improper Neutralization of Delimiters in Mongoose Web Server library
MEDIUM (4)
Improper Neutralization of Delimiters vulnerability in Cesanta Mongoose Web Server v7.14 allows to trigger an infinite loop bug if the input string contains unexpected characters.
Published: 2024-11-18T09:07:09.562Z
Updated: 2024-11-18T13:35:30.655Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42391 vulnerable 2026-06-08 06:43:56.574950 Use of Out-of-range Pointer Offset in Mongoose Web Server library
MEDIUM (4.3)
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.
Published: 2024-11-18T09:07:03.674Z
Updated: 2024-11-18T13:35:49.668Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42390 vulnerable 2026-06-08 06:43:56.574505 Use of Out-of-range Pointer Offset in Mongoose Web Server library
MEDIUM (4.3)
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.
Published: 2024-11-18T09:06:57.586Z
Updated: 2024-11-18T13:36:09.264Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42389 vulnerable 2026-06-08 06:43:56.574130 Use of Out-of-range Pointer Offset in Mongoose Web Server library
MEDIUM (5.3)
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.
Published: 2024-11-18T09:06:51.396Z
Updated: 2024-11-18T13:36:50.776Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42388 vulnerable 2026-06-08 06:43:56.573607 Use of Out-of-range Pointer Offset in Mongoose Web Server library
MEDIUM (5.3)
Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.
Published: 2024-11-18T09:06:44.153Z
Updated: 2024-11-18T13:37:37.168Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42387 vulnerable 2026-06-08 06:43:56.573104 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42386 vulnerable 2026-06-08 06:43:56.572697 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42385 vulnerable 2026-06-08 06:43:56.572018 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42384 vulnerable 2026-06-08 06:43:56.570946 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-42383 vulnerable 2026-06-08 06:43:56.568528 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25193 vulnerable 2026-06-08 05:11:29.556363 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.