CVE-2019-19307

An integer overflow in parse_mqtt in mongoose.c in Cesanta Mongoose 6.16 allows an attacker to achieve remote DoS (infinite loop), or possibly cause an out-of-bounds write, by sending a crafted MQTT protocol packet.
References
Link Resource
https://github.com/cesanta/mongoose/issues/1055 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:cesanta:mongoose:6.16:*:*:*:*:*:*:*

Information

Published : 2019-11-26 04:15

Updated : 2020-08-24 05:37


NVD link : CVE-2019-19307

Mitre link : CVE-2019-19307

Products Affected
No products.
CWE
CWE-125

Out-of-bounds Read

CWE-190

CWE-787

CWE-835