A vulnerability was detected in Cesanta Mongoose up to 7.20. This impacts the function mg_chacha20_poly1305_decrypt of the file /src/tls_chacha20.c of the component Poly1305 Authentication Tag Handler

Description

A vulnerability was detected in Cesanta Mongoose up to 7.20. This impacts the function mg_chacha20_poly1305_decrypt of the file /src/tls_chacha20.c of the component Poly1305 Authentication Tag Handler. The manipulation results in improper verification of cryptographic signature. The attack may be launched remotely. This attack is characterized by high complexity. The exploitability is said to be difficult. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Affected Products

Vendor	Product	Versions
cesanta	mongoose	<= 7.20

References

https://github.com/dwBruijn/CVEs/blob/main/Mongoose/ChaCha20Poly1305.md(Exploit, Third Party Advisory)
https://github.com/dwBruijn/CVEs/blob/main/Mongoose/ChaCha20Poly1305.md#poc(Exploit, Third Party Advisory)
https://vuldb.com/?ctiid.347335(Permissions Required, VDB Entry)
https://vuldb.com/?id.347335(Third Party Advisory, VDB Entry)
https://vuldb.com/?submit.757091(Third Party Advisory, VDB Entry)

CVSS 3.13.7 LOW

VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA KEV❌ No

Actively exploited❌ No

CWECWE-345, CWE-347

PublishedFeb 23, 2026

Last enriched17h ago

Trending Score0

Source articles0

Independent0

Info Completeness8/14

Missing: epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

A vulnerability was detected in Cesanta Mongoose up to 7.20. This impacts the function mg_chacha20_poly1305_decrypt of the file /src/tls_chacha20.c of the component Poly1305 Authentication Tag Handler

Description

Affected Products

References

Community Vote

Related CVEs (5)

Pin to Dashboard

Verification

Vulnerability Timeline