Cesanta Mongoose 6.18
Approved changes feed: RSS · Atom
cpe:2.3:a:cesanta:mongoose:6.18:*:*:*:*:*:*:*
part: a version: 6.18 update: *
| Vendor | Cesanta (91223ef9-9be1-51ca-9999-b3190ce9965d) |
|---|---|
| Product | Mongoose (749d186c-b6b5-5dfe-a2fa-a74c5ea145b3) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/cesanta/mongoose |
purl2cpe | 2026-06-01 10:17:36.212290 |
pkg:rpm/fedora/mongoose |
purl2cpe | 2026-06-01 10:17:36.212291 |
pkg:rpm/opensuse/mongoose |
purl2cpe | 2026-06-01 10:17:36.212293 |
pkg:sourceforge/mongoose-emb-web-server.mirror |
purl2cpe | 2026-06-01 10:17:36.212294 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-25887 |
vulnerable | 2026-06-08 05:23:49.615147 |
Details available
Buffer overflow in mg_resolve_from_hosts_file in Mongoose 6.18, when reading from a crafted hosts file.
Published: 2023-08-22T00:00:00.000Z
Updated: 2024-10-03T19:29:25.195Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-25756 |
vulnerable | 2026-06-08 05:23:49.344159 |
Details available
A buffer overflow vulnerability exists in the mg_get_http_header function in Cesanta Mongoose 6.18 due to a lack of bounds checking. A crafted HTTP header can exploit this bug. NOTE: a committer has stated "this will not happen in practice.
Published: 2020-09-18T04:44:50.000Z
Updated: 2024-08-04T15:40:36.991Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.