5.3

CVSS3.1

CVE-2024-42389 - Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.

๐Ÿ“… Published: Nov. 18, 2024, 9:06 a.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 5:51 p.m.

5.3

CVSS3.1

CVE-2024-42388 - Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.

๐Ÿ“… Published: Nov. 18, 2024, 9:06 a.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 5:51 p.m.

5.3

CVSS3.1

CVE-2024-42387 - Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and force the application to read unintended heap memory space.

๐Ÿ“… Published: Nov. 18, 2024, 9:06 a.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 5:51 p.m.

7.1

CVSS3.1

CVE-2024-41974 - WAGO: BACNet Service Property Modification Due to Permission Misconfiguration in Multiple Devices

A low privileged remote attackerย may modify the BACNet service properties due to incorrect permission assignment for critical resources which may lead to a DoS limited to BACNet communication.

๐Ÿ“… Published: Nov. 18, 2024, 9:05 a.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.2

CVSS3.1

CVE-2024-42386 - Use of Out-of-range Pointer Offset in Mongoose Web Server library

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and produce a segmentation fault on the application.

๐Ÿ“… Published: Nov. 18, 2024, 9:05 a.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 5:52 p.m.

8.1

CVSS3.1

CVE-2024-41973 - WAGO: Remote Arbitrary File Write with Root Privileges in multiple Devices

A low privileged remote attacker canย specify an arbitrary file on the filesystem whichย may lead to an arbitrary file writes with root privileges.

๐Ÿ“… Published: Nov. 18, 2024, 9:05 a.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

4

CVSS3.1

CVE-2024-42385 - Improper Neutralization of Delimiters in Mongoose Web Server library

Improper Neutralization of Delimiters vulnerability in Cesanta Mongoose Web Server v7.14 allows to trigger an out-of-bound memory write if the PEM certificate contains unexpected characters.

๐Ÿ“… Published: Nov. 18, 2024, 9:05 a.m. ๐Ÿ”„ Last Modified: Nov. 19, 2024, 5:54 p.m.

6.5

CVSS3.1

CVE-2024-41972 - WAGO: Arbitrary File Overwrite Leading to Privileged File Read in Multiple Devices

A low privileged remote attacker canย overwrite an arbitrary file on the filesystem whichย may lead to an arbitrary file read with root privileges.

๐Ÿ“… Published: Nov. 18, 2024, 9:04 a.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2024-42384 - Integer Overflow or Wraparound in Mongoose Web Server library

Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet and produce a segmentation fault on the application.

๐Ÿ“… Published: Nov. 18, 2024, 9:04 a.m. ๐Ÿ”„ Last Modified: Nov. 7, 2025, 4:15 p.m.

8.1

CVSS3.1

CVE-2024-41971 - WAGO: Arbitrary File Overwrite in Multiple Devices

A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a DoS and data loss.

๐Ÿ“… Published: Nov. 18, 2024, 9:04 a.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 345299
Page 7448 of 34,530
ยซ previous page ยป next page
Filters