VYPR
High severity7.5OSV Advisory· Published Jun 19, 2018· Updated Jun 17, 2026

CVE-2018-10945

CVE-2018-10945

Description

The mg_handle_cgi function in mongoose.c in Mongoose 6.11 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash, or NULL pointer dereference) via an HTTP request, related to the mbuf_insert function.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.