Primary

Context

Cesanta Frozen NULL Pointer Dereference Vulnerability Allowing Denial-of-Service

Vulnerability

A NULL pointer dereference vulnerability has been identified in Cesanta Frozen versions prior to 1.7. This vulnerability allows an attacker to cause a crash in the component that embeds the library by sending a maliciously crafted JSON input.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition on the affected component.

Remediation

Users are advised to update to Cesanta Frozen version 1.7.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Cesanta Frozen NULL Pointer Dereference Vulnerability Allowing Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating