top of page
perceptive_background_267k.jpg

Mongoose Web Server 6.9 contains a denial of service vulnerability that allows remote attackers to crash the service by establishing multiple socket connections…

Published:

5 March 2026 at 23:00:00

Alert date:

6 March 2026 at 14:08:47

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

CVE-2018-25193 is a denial of service vulnerability in Mongoose Web Server version 6.9 that allows remote attackers to crash the service through multiple socket connections. Attackers can exploit this by repeatedly creating connections to the default port and sending malformed data, which exhausts server resources and causes service unavailability. The vulnerability enables resource exhaustion attacks that can render the web server completely unresponsive.

Technical details

Mitigation steps:

Affected products:

Mongoose Web Server

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2018-25193
https://www.exploit-db.com/exploits/45819
https://www.vulncheck.com/advisories/mongoose-web-server-denial-of-service-via-socket-connection

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page