CVE-2025-57784 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Tomahawk auth timing attack due to usage of `strcmp` has been identified in Hiawatha webserver version 11.7 which allows a local attacker to access the manageme…
Low CVSS: 3.3

CVE-2025-57784

Tomahawk auth timing attack due to usage of `strcmp` has been identified in Hiawatha webserver version 11.7 which allows a local attacker to access the management client.
Vendor
Hiawatha-webserver
Product
Hiawatha
CWE
NVD-CWE-noinfo
Yayın Tarihi
2026-01-26 18:16:27
Güncelleme
2026-02-18 14:16:39
Source Identifier
cret@cert.org
KEV Date Added
-

Kategoriler

NVD-CWE-noinfo Hiawatha LOW Hiawatha-webserver 2026

Referanslar

https://gitlab.com/hsleisink/hiawatha/-/blame/master/src/tomahawk.c?ref_type=heads#L429