Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2025/10/20 11:40 p.m.5 views

SUSE CVE-2025-11680

Out-of-bounds Write in unfilterscanline in warmcat libwebsockets allows, when the LWSWITHUPNG flag is enabled during compilation and the HTML display stack is used, to write past a heap allocated buffer possibly causing a crash, when the user visits an attacker controlled website that contains a...

5.9CVSS7.3AI score0.00356EPSS
Exploits0References3
Snyk
Snyk
added 2025/10/20 2:43 p.m.2 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write via the lwsupngdecode function when the WSWITHUPNG flag is enabled during compilation and the HTML display stack is used. An attacker can cause a crash or potentially execute arbitrary code by enticing a user to visi...

5.9CVSS6AI score0.00356EPSS
Exploits0References2
NVD
NVD
added 2025/10/20 2:15 p.m.6 views

CVE-2025-11679

Out-of-bounds Read in lwsupngemitnextline in warmcat libwebsockets allows, when the LWSWITHUPNG flag is enabled during compilation and the HTML display stack is used, to read past a heap allocated buffer possibly causing a crash, when the user visits an attacker controlled website that contains a...

5.9CVSS0.00356EPSS
Exploits0References2
CVE
CVE
added 2025/10/20 2:4 p.m.11 views

CVE-2025-11680

CVE-2025-11680 affects libwebsockets’ unfilter_scanline in the warmcat library. When compiled with LWS_WITH_UPNG and the HTML display stack is used, a crafted PNG with a large width can trigger an integer overflow that determines the size of a heap allocation, enabling an out-of-bounds write and ...

5.9CVSS6.8AI score0.00356EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2025/10/20 2:4 p.m.3 views

CVE-2025-11680

Out-of-bounds Write in unfilterscanline in warmcat libwebsockets allows, when the LWSWITHUPNG flag is enabled during compilation and the HTML display stack is used, to write past a heap allocated buffer possibly causing a crash, when the user visits an attacker controlled website that contains a...

5.9CVSS7.3AI score0.00356EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/20 2:4 p.m.9 views

CVE-2025-11680 Out-of-bounds Write in libwebsockets PNG parsing

Out-of-bounds Write in unfilterscanline in warmcat libwebsockets allows, when the LWSWITHUPNG flag is enabled during compilation and the HTML display stack is used, to write past a heap allocated buffer possibly causing a crash, when the user visits an attacker controlled website that contains a...

5.9CVSS0.00356EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/20 1:58 p.m.8 views

CVE-2025-11679 Out-of-bounds Read in libwebsockets PNG parsing

Out-of-bounds Read in lwsupngemitnextline in warmcat libwebsockets allows, when the LWSWITHUPNG flag is enabled during compilation and the HTML display stack is used, to read past a heap allocated buffer possibly causing a crash, when the user visits an attacker controlled website that contains a...

5.9CVSS0.00356EPSS
Exploits0References2
CVE
CVE
added 2025/10/20 1:58 p.m.16 views

CVE-2025-11679

CVE-2025-11679 affects warmcat libwebsockets where an out-of-bounds read in lws_upng_emit_next_line can occur if LWS_WITH_UPNG is enabled and the HTML display stack is used, potentially crashing a heap-allocated buffer when a crafted PNG with large height is viewed. Public sources (Fedora, Debian...

5.9CVSS6.5AI score0.00356EPSS
Exploits0References2
Rows per page
Query Builder