Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cesanta Software Mongoose-OS Integer Overflow or Wraparound
Vulnerability Description
Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
整数溢出或超界折返
Vulnerability Title
Mongoose-OS 输入验证错误漏洞
Vulnerability Description
Mongoose-OS是一个应用系统。一个管理物联网项目平台。 Cesanta Software Mongoose-OS v2.17.0 存在输入验证错误漏洞,该漏洞源于不正确的内存分配可能导致任意的内存分配,从而导致意外的行为,如崩溃或远程代码注入执行。
CVSS Information
N/A
Vulnerability Type
N/A