High severity7.5OSV Advisory· Published Jun 19, 2018· Updated Jun 17, 2026
CVE-2018-10945
CVE-2018-10945
Description
The mg_handle_cgi function in mongoose.c in Mongoose 6.11 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash, or NULL pointer dereference) via an HTTP request, related to the mbuf_insert function.
Affected products
2- Range: 3.2, 3.3, 3.4, …
- Range: =6.11
Patches
Vulnerability mechanics
References
1- blog.hac425.top/2018/05/16/CVE-2018-10945-mongoose.htmlnvdExploitTechnical DescriptionThird Party Advisory
News mentions
0No linked articles in our index yet.