Buffer overflow in Warmcat Libwebsockets

CVE-2025-1866

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 a…

Vulnerability class: Buffer Overflow

EPSS: 0.002 (48.1th percentile) — read the EPSS interpretation.

Affected products

Warmcat Libwebsockets — versions 0

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

github.com/warmcat/libwebsockets/commit/3f7c79fd57338aca1bf4a1b1f24e324b80d36265 (patch)