Cesanta - Mongoose Os CVE

Filtered by vendor Cesanta Subscribe

Filtered by product Mongoose Os

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-27425	1 Cesanta	1 Mongoose Os	2022-05-12	7.5 HIGH	9.8 CRITICAL
Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.

Vulnerabilities (CVE)