Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The mg_handle_cgi function in mongoose.c in Mongoose 6.11 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash, or NULL pointer dereference) via an HTTP request, related to the mbuf_insert function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cesanta Mongoose 安全漏洞
Vulnerability Description
Cesanta Mongoose是爱尔兰Cesanta公司的一套嵌入式服务器库,它包括TCP、HTTP客户端和服务器、WenSocket客户端和服务器等功能。 Cesanta Mongoose 6.11版本中的mongoose.c文件的‘mg_handle_cgi’函数存在安全漏洞。远程攻击者可通过发送HTTP请求利用该漏洞造成拒绝服务(基于堆的缓冲区越界读取,应用程序崩溃或空指针逆向引用)。
CVSS Information
N/A
Vulnerability Type
N/A