PT-2025-4005 · Cesanta · Cesanta Frozen

Name of the Vulnerable Software and Affected Versions: Cesanta Frozen versions prior to 1.7 Description: A NULL Pointer Dereference vulnerability allows an attacker to induce a crash of the component embedding the library by supplying a maliciously crafted JSON as input. Recommendations: For...

CVE-2024-49361 Potential Vulnerability in ACON Library: Improper Input Validation Leading to Malicious Code Execution

ACON is a widely-used library of tools for machine learning that focuses on adaptive correlation optimization. A potential vulnerability has been identified in the input validation process, which could lead to arbitrary code execution if exploited. This issue could allow an attacker to submit...

Denial Of Service (DoS)

kernel is vulnerable to Denial of Service DoS attacks. An out-of-bounds memory access triggers in the I2CSMBUSBLOCKDATA with malicious input data. This flaw allows a local user to crash the system...

K32171392: Apache Log4j2 vulnerability CVE-2021-45046

Security Advisory Description It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map MDC input data when the logging configuration uses a non-default Pattern...