CVE-2020-36995

HIGH

Mocha Telnet Lite for iOS 4.2 - DoS

Title source: llm

Description

Mocha Telnet Lite for iOS 4.2 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the user configuration input. Attackers can overwrite the 'User' field with 350 bytes of repeated characters to trigger an application crash and prevent normal functionality.

Exploits (1)

exploitdb WORKING POC

by Luis Martínez · pythondoswindows

https://www.exploit-db.com/exploits/48728

View Code ZIP pw:eip

References (3)

[Various Sources] https://apps.apple.com/us/app/telnet-lite/id286893976

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/48728

[Third Party Advisory] https://www.vulncheck.com/advisories/mocha-telnet-lite-for-ios-user-denial-of-service

Scores

CVSS v3 7.5

EPSS 0.0003

EPSS Percentile 8.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-120

Status draft

Timeline

Published Jan 29, 2026

Tracked Since Feb 18, 2026