Cesanta Mongoose Web Server v714 DC-2024-42384

2024-11-19

:

This vulnerability affects Cesanta Mongoose Web Server version 7.14. An attacker can exploit an integer overflow or wraparound issue to crash the application by sending a specially crafted TLS packet. This could lead to a Denial-of-Service (DoS) attack.

Vulnerability Details:

Platform: Cesanta Mongoose Web Server
Version: 7.14
Vulnerability: Integer Overflow or Wraparound
Severity: High (CVSS v2 score: 7.8, CVSS v3 score: 7.5)
Date: November 18, 2024

What Undercode Says:

This is a high-severity vulnerability that can be exploited by attackers to crash web servers running Mongoose v7.14.
Upgrading to Mongoose v7.15 or later is recommended to address this issue.
Be cautious when clicking on links from external sources, as they may not be trustworthy.

Note: Undercode is a fictional security blog, and the above analysis is based on the information provided in the article.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top