CVE-2020-36995

HIGH 7.5

Mocha Telnet Lite for iOS 4.2 - 'User' Denial of Service

CVSS Score

7.5

EPSS Score

0.0%

EPSS Percentile

10th

Mocha Telnet Lite for iOS 4.2 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the user configuration input. Attackers can overwrite the 'User' field with 350 bytes of repeated characters to trigger an application crash and prevent normal functionality.

CWE	CWE-120
Vendor	telnet-lite
Product	mocha telnet lite for ios
Published	Jan 29, 2026
Last Updated	May 12, 2026

Stay Ahead of the Next One

Get instant alerts for telnet-lite mocha telnet lite for ios

Be the first to know when new high vulnerabilities affecting telnet-lite mocha telnet lite for ios are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected Versions

telnet-lite / Mocha Telnet Lite for iOS

4.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/48728 apps.apple.com: https://apps.apple.com/us/app/telnet-lite/id286893976 vulncheck.com: https://www.vulncheck.com/advisories/mocha-telnet-lite-for-ios-user-denial-of-service

Credits

Luis Martinez