CVE-2024-42392

Name of the Vulnerable Software and Affected Versions Cesanta Mongoose Web Server version 7.14

Description The issue involves improper neutralization of delimiters, which can trigger an infinite loop bug if the input string contains unexpected characters. This is due to the improper handling of delimiters in the Cesanta Mongoose Web Server.

Recommendations For Cesanta Mongoose Web Server version 7.14, consider restricting input to prevent unexpected characters from being processed, as a temporary workaround, until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.