O5K

**Name of the Vulnerable Software and Affected Versions** msgpackr versions prior to 1.10.1 **Description** The issue is related to the decoding of user-supplied MessagePack messages, which can cause threads to become stuck in a loop. This can be triggered by crafting specific messages. Exploits seem to require structured cloning. There is no information about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For versions prior to 1.10.1, update to version 1.10.1 to resolve the issue. As a temporary workaround, consider replacing the 0x70 extension with a custom one that throws an error or does something other than recursive referencing to mitigate the issue.