CVE-2026-2967 | Cesanta Mongoose up to 7.20 TCP Sequence Number /src/net_builtin.c getpeer verification of source

A vulnerability was found in Cesanta Mongoose up to 7.20. It has been rated as problematic. This affects the function getpeer of the file /src/net_builtin.c of the component TCP Sequence Number Handler. The manipulation leads to improper verification of source of a communication channel.

This vulnerability is listed as CVE-2026-2967. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-2967 | Cesanta Mongoose up to 7.20 TCP Sequence Number /src/net_builtin.c getpeer verification of source

Post correlati

CVE-2024-5983 | itsourcecode Online Bookstore 1.0 bookPerPub.php pubid sql injection

CVE-2024-54045 | Adobe Connect up to 11.4.7/12.6 cross site scripting (apsb24-99)

CVE-2024-34051 | Dolibarr ERP CRM up to 19.0.1 card.php facid cross site scripting

CVE-2024-20049 | MediaTek MT8798 Flashc information disclosure (ALPS08541765)