Enviar #770104: Cesanta Mongoose 7.20 Authorization Bypassinformación

TítuloCesanta Mongoose 7.20 Authorization Bypass
Descripciónsecp384r1 (P-384) Certificate Verification Bypass in Mongoose v7.20 mTLS mg_tls_verify_cert_signature() returns 1 without checking when the issuer CA has a P-384 public key (96 bytes). This means ANY such client certificate is accepted by an mTLS server, https://github.com/cesanta/mongoose/blob/master/mongoose.c#L14080 ### Impact mTLS based authentication bypass. ### Disclosure Vendor contacted Feb 26 and CONFIRMED the vulnerability. ### Exploit Due to the nature of the library, I could not target a single device or hardware configuration, so I had to create one myself via qemu. [redacted]
Usuario
 the_evilsocket (UID 96063)
Sumisión2026-03-02 17:41 (hace 1 mes)
Moderación2026-04-02 09:43 (1 month later)
EstadoAceptado
Entrada de VulDB354827 [Cesanta Mongoose hasta 7.20 P-384 Public Key mongoose.c mg_tls_verify_cert_signature escalada de privilegios]
Puntos17

AnteriorVisión De ConjuntoPróximo

Do you need the next level of professionalism?

Upgrade your account now!