An integer overflow in parse_mqtt in mongoose.c in Cesanta Mongoose 6.16 allows an attacker to achieve remote DoS (infinite loop), or possibly cause an out-of-bounds write, by sending a crafted MQTT protocol packet.
{ "source": "CPE_STRING", "cpe": "cpe:2.3:a:cesanta:mongoose:6.16:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "6.16" }, { "last_affected": "6.16" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-19307.json"