Primary

Context

Cesanta Frozen Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Cesanta Frozen versions prior to 1.7. This vulnerability allows an attacker to cause a crash in the component that embeds the library by sending a maliciously crafted JSON as input.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the component that uses the library to crash.

Remediation

Users are advised to update to Cesanta Frozen version 1.7.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Cesanta Frozen Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating