CVE-2026-5245 | Cesanta Mongoose up to 7.20 mDNS Record mongoose.c handle_mdns_record buf stack-based overflow

A vulnerability identified as critical has been detected in Cesanta Mongoose up to 7.20. This impacts the function handle_mdns_record of the file mongoose.c of the component mDNS Record Handler. Performing a manipulation of the argument buf results in stack-based buffer overflow.

This vulnerability is known as CVE-2026-5245. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

You should upgrade the affected component.

The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.VulDB Recent EntriesRead More