Vulnerabilities > Cesanta
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-03 | CVE-2021-36535 | Out-of-bounds Write vulnerability in Cesanta MJS 1.26 Buffer Overflow vulnerability in Cesanta mJS 1.26 allows remote attackers to cause a denial of service via crafted .js file to mjs_set_errorf. | 5.5 |
| 2022-05-03 | CVE-2021-27425 | Integer Overflow or Wraparound vulnerability in Cesanta Mongoose OS 2.17.0 Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc. | 7.5 |
| 2022-02-18 | CVE-2022-25299 | Files or Directories Accessible to External Parties vulnerability in Cesanta Mongoose This affects the package cesanta/mongoose before 7.6. | 5.0 |
| 2022-01-27 | CVE-2021-46508 | Reachable Assertion vulnerability in Cesanta MJS 2.20.0 There is an Assertion `i < parts_cnt' failed at src/mjs_bcode.c in Cesanta MJS v2.20.0. | 4.3 |
| 2022-01-27 | CVE-2021-46509 | Out-of-bounds Write vulnerability in Cesanta MJS 2.20.0 Cesanta MJS v2.20.0 was discovered to contain a stack overflow via snquote at mjs/src/mjs_json.c. | 6.8 |
| 2022-01-27 | CVE-2021-46510 | Reachable Assertion vulnerability in Cesanta MJS 2.20.0 There is an Assertion `s < mjs->owned_strings.buf + mjs->owned_strings.len' failed at src/mjs_gc.c in Cesanta MJS v2.20.0. | 4.3 |
| 2022-01-27 | CVE-2021-46511 | Reachable Assertion vulnerability in Cesanta MJS 2.20.0 There is an Assertion `m->len >= sizeof(v)' failed at src/mjs_core.c in Cesanta MJS v2.20.0. | 4.3 |
| 2022-01-27 | CVE-2021-46512 | Unspecified vulnerability in Cesanta MJS 2.20.0 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_apply at src/mjs_exec.c. network cesanta | 4.3 |
| 2022-01-27 | CVE-2021-46513 | Classic Buffer Overflow vulnerability in Cesanta MJS 2.20.0 Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via mjs_mk_string at mjs/src/mjs_string.c. | 6.8 |
| 2022-01-27 | CVE-2021-46514 | Reachable Assertion vulnerability in Cesanta MJS 2.20.0 There is an Assertion 'ppos != NULL && mjs_is_number(*ppos)' failed at src/mjs_core.c in Cesanta MJS v2.20.0. | 4.3 |