106 matches found
CVE-2025-11678
Stack-based Buffer Overflow in lwsadnsparselabel in warmcat libwebsockets allows, when the LWSWITHSYSASYNCDNS flag is enabled during compilation, to overflow the labelstack, when the attacker is able to sniff a DNS request in order to craft a response with a matching id containing a label longer...
CVE-2025-11677 Use After Free in libwebsockets WebSocket server
Use After Free in WebSocket server implementation in lwshandshakeserver in warmcat libwebsockets may allow an attacker, in specific configurations where the user provides a callback function that handles LWSCALLBACKHTTPCONFIRMUPGRADE, to achieve denial of service...
CVE-2025-11677
CVE-2025-11677 is a Use After Free in the warmcat libwebsockets WebSocket server (lws_handshake_server). The vulnerability triggers in configurations where a user-supplied callback handles LWS_CALLBACK_HTTP_CONFIRM_UPGRADE, potentially allowing a denial-of-service. Public advisories reference aff...
CVE-2025-11677 Use After Free in libwebsockets WebSocket server
Use After Free in WebSocket server implementation in lwshandshakeserver in warmcat libwebsockets may allow an attacker, in specific configurations where the user provides a callback function that handles LWSCALLBACKHTTPCONFIRMUPGRADE, to achieve denial of service...
CVE-2025-11677
Use After Free in WebSocket server implementation in lwshandshakeserver in warmcat libwebsockets may allow an attacker, in specific configurations where the user provides a callback function that handles LWSCALLBACKHTTPCONFIRMUPGRADE, to achieve denial of service...
Libwebsockets 缓冲区错误漏洞
Libwebsockets is a canonical libwebsockets networking library open-sourced by lws-team. A buffer error vulnerability exists in Libwebsockets that stems from an out-of-bounds write to the unfilterscanline function when the LWSWITHUPNG compilation flag is enabled, which could result in a heap buffe...
Libwebsockets 安全漏洞
Libwebsockets is a canonical libwebsockets networking library open-sourced by lws-team. A security vulnerability exists in Libwebsockets that stems from a stack-based buffer overflow in the lwsadnsparselabel function when compiled with the LWSWITHSYSASYNCDNS flag enabled, which could lead to the...
Libwebsockets 缓冲区错误漏洞
Libwebsockets is a canonical libwebsockets web library open-sourced by lws-team. A buffer error vulnerability exists in Libwebsockets that stems from an out-of-bounds read in the lwsupngemitnextline function when the LWSWITHUPNG flag is enabled and the stack is displayed using HTML, which could...
PT-2025-42759
Name of the Vulnerable Software and Affected Versions libwebsockets affected versions not specified Description A use-after-free issue exists in the WebSocket server implementation within the lws handshake server function of libwebsockets. This can lead to a denial of service if an attacker...
Libwebsockets 资源管理错误漏洞
Libwebsockets is a canonical libwebsockets web library open sourced by lws-team. A resource management error vulnerability exists in Libwebsockets that stems from a post-release reuse issue in the WebSocket server implementation that could lead to a denial of service attack...
PT-2025-42761
Name of the Vulnerable Software and Affected Versions libwebsockets affected versions not specified Description A stack-based buffer overflow exists in the lws adns parse label function within libwebsockets. This occurs when the LWS WITH SYS ASYNC DNS flag is enabled during compilation and an...
EUVD-2025-5807
Malicious code in bioql PyPI...
SUSE CVE-2025-1866
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32...
CVE-2025-1866
A flaw was found in warmcat libwebsockets. This vulnerability allows pointer manipulation, potentially leading to out-of-bounds memory access via specific CMake configurations on the Win32 platform. Mitigation Mitigation for this issue is either not available or the currently available options do...
CVE-2025-1866
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32...
CVE-2025-1866
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32...
CVE-2025-1866 Undefined Behavior Due to Out-of-Bounds Pointer Arithmetic in libwebsockets
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32...
CVE-2025-1866
CVE-2025-1866 affects warmcat libwebsockets in Win32 builds, with memory safety risk from improper Restriction of Operations within the Bounds of a Memory Buffer leading to pointer manipulation and potential out-of-bounds access in versions prior to 4.3.4. The issue is triggered by specific CMake...
CVE-2025-1866 Undefined Behavior Due to Out-of-Bounds Pointer Arithmetic in libwebsockets
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32...
libwebsockets 缓冲区错误漏洞
Libwebsockets is a canonical libwebsockets networking library open-sourced by lws-team. A security vulnerability exists in versions of libwebsockets prior to 4.3.4, which stems from improper pointer manipulation and can lead to out-of-bounds memory accesses...