CVE-2025-65502 – Cesanta Mongoose TLS Denial of Service

CVE ID : CVE-2025-65502

Published : Nov. 24, 2025, 2:15 p.m. | 1 hour, 7 minutes ago

Description : Null pointer dereference in add_ca_certs() in Cesanta Mongoose before 7.2 allows remote attackers to cause a denial of service via TLS initialization where SSL_CTX_get_cert_store() returns NULL.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…