cesanta/mongoose-os

GitHub

github.com

mongoose-os.com

Releases74

Frequency1 month 1 day

Last Release over 4 years ago

Stars2.65K

Mongoose OS - an IoT Firmware Development Framework. Supported microcontrollers: ESP32, ESP8266, CC3220, CC3200, STM32F4, STM32L4, STM32F7. Amazon AWS IoT, Microsoft Azure, Google IoT Core integrated. Code in C or JavaScript.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-27425 ↗	May 3, 2022Tuesday, 3 May 2022, 21:15	7.3 HIGH	7.5 HIGH
Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.