CVE-2024-42385

Name of the Vulnerable Software and Affected Versions Cesanta Mongoose Web Server version 7.14

Description The issue is related to improper neutralization of delimiters in the Cesanta Mongoose Web Server. This can cause an out-of-bound memory write if the PEM certificate contains unexpected characters.

Recommendations For Cesanta Mongoose Web Server version 7.14, consider updating to a newer version that addresses the improper neutralization of delimiters issue, specifically ensuring that PEM certificates are properly validated to prevent out-of-bound memory writes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.