Low severity3.3NVD Advisory· Published Jun 21, 2025· Updated Apr 29, 2026
CVE-2025-6375
CVE-2025-6375
Description
A vulnerability was found in poco up to 1.14.1. It has been rated as problematic. Affected by this issue is the function MultipartInputStream of the file Net/src/MultipartReader.cpp. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. Upgrading to version 1.14.2 is able to address this issue. The patch is identified as 6f2f85913c191ab9ddfb8fae781f5d66afccf3bf. It is recommended to upgrade the affected component.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:pocoproject:poco:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:pocoproject:poco:*:*:*:*:*:*:*:*range: <1.14.2
- (no CPE)range: <=1.14.1
Patches
Vulnerability mechanics
References
6- github.com/pocoproject/poco/commit/6f2f85913c191ab9ddfb8fae781f5d66afccf3bfnvdPatch
- github.com/pocoproject/poco/issues/4915nvdExploitIssue TrackingPatch
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- github.com/pocoproject/poco/releases/tag/poco-1.14.2-releasenvdRelease Notes
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.