Cesanta Mongoose Vulnerabilidad

Cronología

Versión

6.812
6.138
6.05
6.15
6.25

Contramedidas

Official Fix3
Temporary Fix0
Workaround0
Unavailable0
Not Defined20

Explotabilidad

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined22

Vector de acceso

Not Defined0
Physical0
Local0
Adjacent1
Network22

Autenticación

Not Defined0
High0
Low4
None19

La interacción del usuario

Not Defined0
Required1
None22

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤50
≤60
≤73
≤87
≤913
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤50
≤60
≤74
≤86
≤913
≤100

VulDB

≤10
≤20
≤30
≤40
≤50
≤64
≤74
≤815
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤82
≤93
≤1016

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤81
≤91
≤105

Proveedor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k0
<2k14
<5k9
<10k0
<25k0
<50k0
<100k0
≥100k0

Explotar hoy

<1k14
<2k9
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Versions (24): 6.0, 6.1, 6.2, 6.3, 6.4, 6.5, 6.6, 6.7, 6.7-6.18, 6.8, 6.9, 6.10, 6.11, 6.12, 6.13, 6.16, 6.18, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.10

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2023-08-097.17.0Cesanta Mongoose Default Configuration desbordamiento de búfer$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-2905
2022-02-188.58.4Cesanta Mongoose File Name mg_http_upload escalada de privilegios$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-25299
2021-02-097.77.7Cesanta Mongoose Connection Request mg_tls_init desbordamiento de búfer$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-26530
2021-02-097.77.7Cesanta Mongoose Connection Request mg_tls_init desbordamiento de búfer$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-26529
2021-02-097.77.7Cesanta Mongoose Connection Request mg_http_serve_file desbordamiento de búfer$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-26528
2020-09-187.77.7Cesanta Mongoose mg_get_http_header desbordamiento de búfer$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-25756
2019-11-268.58.5Cesanta Mongoose mongoose.c desbordamiento de búfer$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-19307
2019-06-108.58.5Cesanta Mongoose Embedded Web Server Library mongoose.c mg_http_free_proto_data_cgi desbordamiento de búfer$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2018-20356
2019-06-108.58.5Cesanta Mongoose Embedded Web Server Library mongoose.c mg_http_free_proto_data_cgi desbordamiento de búfer$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-20355
2019-06-108.58.5Cesanta Mongoose Embedded Web Server Library mongoose.c mg_http_get_proto_data desbordamiento de búfer$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2018-20354

13 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 13 results.

más entradas por Cesanta

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!