Security Advisory

CVE-2020-25756

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-18 04:44:50

Last updated 2024-08-04 15:40:36

Assigner mitre

State PUBLISHED

Description

A buffer overflow vulnerability exists in the mg_get_http_header function in Cesanta Mongoose 6.18 due to a lack of bounds checking. A crafted HTTP header can exploit this bug. NOTE: a committer has stated "this will not happen in practice.

← Browse all CVEs View on cve.org ↗