CVE-2024-42386

HIGH Year: 2024
CVSS v3 Score
7.5
High
Weakness Type
CWE-823
View all →

Vulnerability Description

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and produce a segmentation fault on the application.

Related Vulnerabilities

CVE-2016-2161

HIGH
CVSS:7.5(High)

In Apache HTTP Server versions 2.4.0 to 2.4.23, malicious input to mod_auth_digest can cause the server to crash, and each instance continues to crash even for subsequently valid requests.

CWE-8232016

CVE-2020-13573

HIGH
CVSS:7.5(High)

A denial-of-service vulnerability exists in the Ethernet/IP server functionality of Rockwell Automation RSLinx Classic 2.57.00.14 CPR 9 SR 3. A specially crafted network request can lead to a denial o...

CWE-8232020

CVE-2022-46377

HIGH
CVSS:7.5(High)

An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality of Weston Embedded uC-FTPs v 1.98.00. A specially-crafted set of network packets can lead to denial of...

CWE-8232022

CVE-2022-46378

HIGH
CVSS:7.5(High)

An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality of Weston Embedded uC-FTPs v 1.98.00. A specially-crafted set of network packets can lead to denial of...

CWE-8232022

CVE-2023-20187

HIGH
CVSS:7.5(High)

A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker...

CWE-8232023

CVE-2024-6603

HIGH
CVSS:7.4(High)

In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory corruption. This vulnerability affects Firefox < 128, Firefox ESR < 11...

CWE-8232024