V
Scaner-VS
vulnerability catalog · v4.2
Home
Catalog
References
Reference catalogs
Sources
Upstream vulnerability databases
CWE
Common Weakness Enumeration
CAPEC
Attack pattern catalog
ATT&CK
Adversary tactics & techniques
Mitigations
ATT&CK Mitigations (M-codes)
Products
Affected products & software
Vendors
Vendors & manufacturers
Docs
EN
RU
Home
Catalog
Sources
CWE
CAPEC
ATT&CK
Mitigations
Products
Vendors
Docs
← Back to List
Cesanta
›
Application
nvd
Mongooseos Mjs
Vulnerabilities
1
Known exploited
0
Max CVSS
9.8
Top EPSS
0.02174
Severity breakdown
Critical
1
High
0
Medium
0
Low
0
Also matched as (raw):
mongooseos_mjs
Top vulnerabilities
CVE-2021-31875
In mjs_json.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off-by-one heap-based buffer overflow in mjs_json_parse, which can potentially lead to redirection of control flow. NOTE: the original reporter disputes the significance of this finding because "there isn’t very much of an opportunity to exploit this reliably for an information leak, so there isn’t any real security impact."
View vendor →
Open in catalog with product filter →