CVE-2023-34188 Information

Description

The HTTP server in Mongoose before 7.10 accepts requests containing negative Content-Length headers.

Reference

https://github.com/cesanta/mongoose/pull/2197 https://github.com/cesanta/mongoose/compare/7.9…7.10 https://github.com/cesanta/mongoose/commit/4663090a8fb036146dfe77718cff612b0101cb0f