Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-65502
CVE-2025-65502
Null pointer dereference in add_ca_certs() in Cesanta Mongoose before 7.2 allows remote attackers to cause a denial of service via TLS initialization where SSL_CTX_get_cert_store() returns NULL.
Published Nov 25, 2025
https://github.com/cesanta/mongoose/issues/3306
CVSS Score
Medium
4.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
rpm
mongoose
3.1-2.el5
rpm
mongoose
3.1-2.el6
1-2 of 2
CVE-2025-65502 | Components Impacted | Sonatype Guide | Sonatype Guide
