PT-2025-26869 · Cray · C-Ray

Qiuyitai

·

Published

2025-06-25

·

Updated

2025-06-25

·

CVE-2025-45332

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions: vkoskiv c-ray version 1.1
Description: The issue is related to a Null Pointer Dereference (NPD) in the parse mtllib function of the data processing module. This leads to unpredictable program behavior, causing segmentation faults and program crashes.
Recommendations: For version 1.1, consider disabling the parse mtllib function until a patch is available to prevent potential crashes and segmentation faults.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CVE-2025-45332

Affected Products

C-Ray