CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42391

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.9%

CVSS Severity

CVSS v3 Score 4.3

References

https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-42391

Products affected by CVE-2024-42391

Cesanta » Mongoose » Version: N/A

cpe:2.3:a:cesanta:mongoose:-
Cesanta » Mongoose » Version: 3.2

cpe:2.3:a:cesanta:mongoose:3.2
Cesanta » Mongoose » Version: 3.3

cpe:2.3:a:cesanta:mongoose:3.3
Cesanta » Mongoose » Version: 3.4

cpe:2.3:a:cesanta:mongoose:3.4
Cesanta » Mongoose » Version: 3.5

cpe:2.3:a:cesanta:mongoose:3.5
Cesanta » Mongoose » Version: 3.6

cpe:2.3:a:cesanta:mongoose:3.6
Cesanta » Mongoose » Version: 3.7

cpe:2.3:a:cesanta:mongoose:3.7
Cesanta » Mongoose » Version: 3.8

cpe:2.3:a:cesanta:mongoose:3.8
Cesanta » Mongoose » Version: 4.0

cpe:2.3:a:cesanta:mongoose:4.0
Cesanta » Mongoose » Version: 4.1

cpe:2.3:a:cesanta:mongoose:4.1
Cesanta » Mongoose » Version: 5.0

cpe:2.3:a:cesanta:mongoose:5.0
Cesanta » Mongoose » Version: 5.1

cpe:2.3:a:cesanta:mongoose:5.1
Cesanta » Mongoose » Version: 5.2

cpe:2.3:a:cesanta:mongoose:5.2
Cesanta » Mongoose » Version: 5.3

cpe:2.3:a:cesanta:mongoose:5.3
Cesanta » Mongoose » Version: 5.4

cpe:2.3:a:cesanta:mongoose:5.4
Cesanta » Mongoose » Version: 5.5

cpe:2.3:a:cesanta:mongoose:5.5
Cesanta » Mongoose » Version: 5.6

cpe:2.3:a:cesanta:mongoose:5.6
Cesanta » Mongoose » Version: 6.0

cpe:2.3:a:cesanta:mongoose:6.0
Cesanta » Mongoose » Version: 6.1

cpe:2.3:a:cesanta:mongoose:6.1
Cesanta » Mongoose » Version: 6.10

cpe:2.3:a:cesanta:mongoose:6.10
Cesanta » Mongoose » Version: 6.11

cpe:2.3:a:cesanta:mongoose:6.11
Cesanta » Mongoose » Version: 6.12

cpe:2.3:a:cesanta:mongoose:6.12
Cesanta » Mongoose » Version: 6.13

cpe:2.3:a:cesanta:mongoose:6.13
Cesanta » Mongoose » Version: 6.14

cpe:2.3:a:cesanta:mongoose:6.14
Cesanta » Mongoose » Version: 6.15

cpe:2.3:a:cesanta:mongoose:6.15
Cesanta » Mongoose » Version: 6.16

cpe:2.3:a:cesanta:mongoose:6.16
Cesanta » Mongoose » Version: 6.17

cpe:2.3:a:cesanta:mongoose:6.17
Cesanta » Mongoose » Version: 6.18

cpe:2.3:a:cesanta:mongoose:6.18
Cesanta » Mongoose » Version: 6.2

cpe:2.3:a:cesanta:mongoose:6.2
Cesanta » Mongoose » Version: 6.3

cpe:2.3:a:cesanta:mongoose:6.3
Cesanta » Mongoose » Version: 6.4

cpe:2.3:a:cesanta:mongoose:6.4
Cesanta » Mongoose » Version: 6.5

cpe:2.3:a:cesanta:mongoose:6.5
Cesanta » Mongoose » Version: 6.6

cpe:2.3:a:cesanta:mongoose:6.6
Cesanta » Mongoose » Version: 6.7

cpe:2.3:a:cesanta:mongoose:6.7
Cesanta » Mongoose » Version: 6.8

cpe:2.3:a:cesanta:mongoose:6.8
Cesanta » Mongoose » Version: 6.9

cpe:2.3:a:cesanta:mongoose:6.9
Cesanta » Mongoose » Version: 7.0

cpe:2.3:a:cesanta:mongoose:7.0
Cesanta » Mongoose » Version: 7.1

cpe:2.3:a:cesanta:mongoose:7.1
Cesanta » Mongoose » Version: 7.10

cpe:2.3:a:cesanta:mongoose:7.10
Cesanta » Mongoose » Version: 7.11

cpe:2.3:a:cesanta:mongoose:7.11
Cesanta » Mongoose » Version: 7.12

cpe:2.3:a:cesanta:mongoose:7.12
Cesanta » Mongoose » Version: 7.13

cpe:2.3:a:cesanta:mongoose:7.13
Cesanta » Mongoose » Version: 7.14

cpe:2.3:a:cesanta:mongoose:7.14
Cesanta » Mongoose » Version: 7.2

cpe:2.3:a:cesanta:mongoose:7.2
Cesanta » Mongoose » Version: 7.3

cpe:2.3:a:cesanta:mongoose:7.3
Cesanta » Mongoose » Version: 7.4

cpe:2.3:a:cesanta:mongoose:7.4
Cesanta » Mongoose » Version: 7.5

cpe:2.3:a:cesanta:mongoose:7.5
Cesanta » Mongoose » Version: 7.6

cpe:2.3:a:cesanta:mongoose:7.6
Cesanta » Mongoose » Version: 7.7

cpe:2.3:a:cesanta:mongoose:7.7
Cesanta » Mongoose » Version: 7.8

cpe:2.3:a:cesanta:mongoose:7.8
Cesanta » Mongoose » Version: 7.9

cpe:2.3:a:cesanta:mongoose:7.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42391

Products

Pricing

Contact Us