Filtered by vendor Cesanta
Subscriptions
Total
113 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2019-13503 | 1 Cesanta | 1 Mongoose | 2023-01-30 | 7.5 High |
mq_parse_http in mongoose.c in Mongoose 6.15 has a heap-based buffer over-read. | ||||
CVE-2020-18392 | 1 Cesanta | 1 Mjs | 2022-10-26 | 5.5 Medium |
Stack overflow vulnerability in parse_array Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2018-18764 | 1 Cesanta | 1 Mongoose | 2022-10-03 | N/A |
An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in a parse_mqtt getu16 call. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially resulting in information disclosure and denial of service. An attacker needs to send a specially crafted MQTT packet over the network to trigger this vulnerability. | ||||
CVE-2021-33448 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs(mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow at 0x7fffe9049390. | ||||
CVE-2021-33447 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_print() in mjs.c. | ||||
CVE-2021-33446 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_next() in mjs.c. | ||||
CVE-2021-33445 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_string_char_code_at() in mjs.c. | ||||
CVE-2021-33444 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in getprop_builtin_foreign() in mjs.c. | ||||
CVE-2021-33443 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in mjs_execute() in mjs.c. | ||||
CVE-2021-33442 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in json_printf() in mjs.c. | ||||
CVE-2021-33441 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in exec_expr() in mjs.c. | ||||
CVE-2021-33440 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_bcode_commit() in mjs.c. | ||||
CVE-2021-33439 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is Integer overflow in gc_compact_strings() in mjs.c. | ||||
CVE-2021-33438 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in json_parse_array() in mjs.c. | ||||
CVE-2021-33449 | 1 Cesanta | 1 Mjs | 2022-07-28 | 5.5 Medium |
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in mjs_bcode_part_get_by_offset() in mjs.c. | ||||
CVE-2020-36371 | 1 Cesanta | 1 Mjs | 2022-06-28 | 5.5 Medium |
Stack overflow vulnerability in parse_mul_div_rem Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36370 | 1 Cesanta | 1 Mjs | 2022-06-28 | 5.5 Medium |
Stack overflow vulnerability in parse_unary Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36369 | 1 Cesanta | 1 Mjs | 2022-06-28 | 5.5 Medium |
Stack overflow vulnerability in parse_statement_list Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36368 | 1 Cesanta | 1 Mjs | 2022-06-28 | 5.5 Medium |
Stack overflow vulnerability in parse_statement Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. | ||||
CVE-2020-36367 | 1 Cesanta | 1 Mjs | 2022-06-28 | 5.5 Medium |
Stack overflow vulnerability in parse_block Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. |