Vulnerabilities > Cesanta > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-18 | CVE-2024-42387 | Unspecified vulnerability in Cesanta Mongoose Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space. | 5.3 |
| 2024-11-18 | CVE-2024-42388 | Unspecified vulnerability in Cesanta Mongoose Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space. | 5.3 |
| 2024-11-18 | CVE-2024-42389 | Unspecified vulnerability in Cesanta Mongoose Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space. | 5.3 |
| 2024-11-18 | CVE-2024-42390 | Unspecified vulnerability in Cesanta Mongoose Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space. | 5.3 |
| 2024-11-18 | CVE-2024-42391 | Unspecified vulnerability in Cesanta Mongoose Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space. | 5.3 |
| 2023-05-09 | CVE-2023-30087 | Out-of-bounds Write vulnerability in Cesanta MJS 1.26 Buffer Overflow vulnerability found in Cesanta MJS v.1.26 allows a local attacker to cause a denial of service via the mjs_mk_string function in mjs.c. | 5.5 |
| 2023-05-09 | CVE-2023-30088 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cesanta MJS 1.26 An issue found in Cesanta MJS v.1.26 allows a local attacker to cause a denial of service via the mjs_execute function in mjs.c. | 5.5 |
| 2023-04-24 | CVE-2023-29570 | Unspecified vulnerability in Cesanta MJS 2.20.0 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_ffi_cb_free at src/mjs_ffi.c. | 5.5 |
| 2023-04-14 | CVE-2023-29569 | Unspecified vulnerability in Cesanta MJS 2.20.0 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ffi_cb_impl_wpwwwww at src/mjs_ffi.c. | 5.5 |
| 2023-04-12 | CVE-2023-29571 | Unspecified vulnerability in Cesanta MJS 2.20.0 Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via gc_sweep at src/mjs_gc.c. | 5.5 |