CVE-2025-11677

Name
CVE-2025-11677
Description
Use After Free in WebSocket server implementation in lws_handshake_server in warmcat libwebsockets may allow an attacker, in specific configurations where the user provides a callback function that handles LWS_CALLBACK_HTTP_CONFIRM_UPGRADE, to achieve denial of service.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
patch https://libwebsockets.org/git/libwebsockets/commit?id=2f082ec31261f556969160143ba94875d783971a
third-party-advisory https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-11677

Match rules

CPE URI Source package Min version Max version
libwebsockets >= 3 <= 4.4.1,4.3.6

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
libwebsockets edge-main 4.3.5-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libwebsockets edge-main 4.3.5-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libwebsockets edge-main 4.3.5-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libwebsockets edge-main 4.3.3-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libwebsockets edge-main 4.3.3-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libwebsockets 3.22-main 4.3.5-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libwebsockets 3.21-main 4.3.3-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libwebsockets 3.20-main 4.3.3-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
libwebsockets 3.19-main 4.3.3-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable