Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.7
Mongoose Web Server 6.9 Can Be Crashed by Malicious Connections
CVE-2018-25193
Summary
The Mongoose Web Server 6.9 has a weakness that allows an attacker to repeatedly connect to the server and send bad data, causing it to crash. This can make the server unavailable to users. Update to a fixed version to prevent this from happening.
Original title
Mongoose Web Server 6.9 contains a denial of service vulnerability that allows remote attackers to crash the service by establishing multiple socket connections. Attackers can repeatedly create con...
Original description
Mongoose Web Server 6.9 contains a denial of service vulnerability that allows remote attackers to crash the service by establishing multiple socket connections. Attackers can repeatedly create connections to the default port and send malformed data to exhaust server resources and cause service unavailability.
nvd CVSS3.1
7.5
nvd CVSS4.0
8.7
Vulnerability type
CWE-1188
Published: 6 Mar 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026