Vulnerability Details CVE-2025-57785
A Double Free in XSLT `show_index` has been identified in Hiawatha webserver version 11.7 which allows an unauthenticated attacker to corrupt data which may lead to arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 35.8%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2025-57785
-
cpe:2.3:a:hiawatha.leisink:hiawatha_webserver:11.7