CVE-2026-5245
Received Received - Intake
Stack-Based Buffer Overflow in Cesanta Mongoose mDNS Handler

Publication date: 2026-04-02

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability was found in Cesanta Mongoose up to 7.20. This impacts the function handle_mdns_record of the file mongoose.c of the component mDNS Record Handler. Performing a manipulation of the argument buf results in stack-based buffer overflow. Remote exploitation of the attack is possible. A high degree of complexity is needed for the attack. The exploitability is said to be difficult. The exploit has been made public and could be used. Upgrading to version 7.21 will fix this issue. The patch is named 0d882f1b43ff2308b7486a56a9d60cd6dba8a3f1. You should upgrade the affected component. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-02
Last Modified
2026-04-29
Generated
2026-05-07
AI Q&A
2026-04-02
EPSS Evaluated
2026-05-05
NVD
CVE-2026-5245
EUVD
EUVD-2026-18183
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
cesanta mongoose From 7.0 (inc) to 7.21 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-119 The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
CWE-121 A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :

Exploitation of this vulnerability can lead to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code or cause a denial of service.

Since the vulnerability can be exploited remotely, it poses a risk to systems running affected versions of Cesanta Mongoose that handle mDNS records.

However, the attack is complex and difficult to perform, which may reduce the likelihood of successful exploitation.


Can you explain this vulnerability to me?

This vulnerability exists in Cesanta Mongoose up to version 7.20, specifically in the function handle_mdns_record within the file mongoose.c, which is part of the mDNS Record Handler component.

The issue arises when the argument 'buf' is manipulated, leading to a stack-based buffer overflow.

This overflow can be exploited remotely, although the attack requires a high degree of complexity and is considered difficult to execute.

An exploit for this vulnerability has been made public.

Upgrading to version 7.21 of Cesanta Mongoose fixes this issue.


What immediate steps should I take to mitigate this vulnerability?

The immediate step to mitigate this vulnerability is to upgrade the affected Cesanta Mongoose component to version 7.21, which contains the fix for this issue.

This vulnerability is caused by a stack-based buffer overflow in the handle_mdns_record function, and remote exploitation is possible, though difficult.

Upgrading to the fixed version is the recommended and effective mitigation.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart