CVE-2025-57785 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A Double Free in XSLT `show_index` has been identified in Hiawatha webserver version 11.7 which allows an unauthenticated attacker to corrupt data which may lea…
Medium CVSS: 6.5

CVE-2025-57785

A Double Free in XSLT `show_index` has been identified in Hiawatha webserver version 11.7 which allows an unauthenticated attacker to corrupt data which may lead to arbitrary code execution.
Vendor
Hiawatha.leisink
Product
Hiawatha Webserver
CWE
CWE-415
Yayın Tarihi
2026-01-26 18:16:27
Güncelleme
2026-02-13 15:21:40
Source Identifier
cret@cert.org
KEV Date Added
-

Kategoriler

CWE-415 Hiawatha Webserver MEDIUM Hiawatha.leisink 2026

Referanslar

https://gitlab.com/hsleisink/hiawatha/-/blame/master/src/xslt.c?ref_type=heads#L675