CVE-2025-51495

Published: Sep 29, 2025

Modified: Oct 1, 2025

PUBLISHED

Description

An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can cause the application to crash. If downstream vendors integrate this component improperly, the issue may lead to a buffer overflow.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/cesanta/mongoose

https://github.com/cesanta/mongoose/pull/3131

https://github.com/cainiao159357/CVE-2025-51495

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-51495

Description

Affected Products

References