5 matches found
CVE-2025-3857
When reading binary Ion data through Amazon.IonDotnet using the RawBinaryReader class, Amazon.IonDotnet does not check the number of bytes read from the underlying stream while deserializing the binary format. If the Ion data is malformed or truncated, this triggers an infinite loop condition tha...
CVE-2025-3857
creationtimestamp| type| source ---|---|--- 2025-04-21 16:02:52+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12688 2025-04-21 18:31:51+00:00| published-proof-of-concept| Telegram/5EJUZnGupE7gi7RJmr2FV0ZRgpmrRFRfEIarwGmxg4P8ExE 2025-04-21 18:59:10+00:00| seen|...
CVE-2025-3857
Summary: A vulnerability in Amazon.IonDotnet’s RawBinaryReader can cause an infinite loop when reading binary Ion data if the input is malformed or truncated, due to not checking the number of bytes read from the underlying stream. This could lead to denial of service. Affected versions: Amazon.I...
CVE-2025-3857 Infinite loop condition in Amazon.IonDotnet
When reading binary Ion data through Amazon.IonDotnet using the RawBinaryReader class, Amazon.IonDotnet does not check the number of bytes read from the underlying stream while deserializing the binary format. If the Ion data is malformed or truncated, this triggers an infinite loop condition tha...
CVE-2025-3857 Infinite loop condition in Amazon.IonDotnet
When reading binary Ion data through Amazon.IonDotnet using the RawBinaryReader class, Amazon.IonDotnet does not check the number of bytes read from the underlying stream while deserializing the binary format. If the Ion data is malformed or truncated, this triggers an infinite loop condition tha...