Unrated severityNVD Advisory· Published Nov 18, 2024· Updated Nov 18, 2024

Use of Out-of-range Pointer Offset in Mongoose Web Server library

CVE-2024-42390

Description

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.

Affected products

Cesanta/Mongoose Web Serverllm-create2 versions
=7.14+ 1 more
- (no CPE)range: =7.14
- (no CPE)range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-42390mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000