PT-2025-9284 · Unknown · Libwebsockets
Titan Team
·
Published
2025-03-03
·
Updated
2025-03-07
·
CVE-2025-1866
CVSS v4.0
10
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
libwebsockets versions prior to 4.3.4
Description
The issue is related to an Improper Restriction of Operations within the Bounds of a Memory Buffer, which can lead to Pointer Manipulation and potentially result in out-of-bounds memory access. This problem is present in code built for the Win32 platform and is triggered under specific conditions, such as when LWS WITHOUT EXTENSIONS is set to OFF or LWS WITH HTTP STREAM COMPRESSION is set to ON in CMake. When exploited, it may allow attackers to manipulate pointers, potentially causing memory corruption or unexpected behavior.
Recommendations
For libwebsockets versions prior to 4.3.4, update to version 4.3.4 or later to resolve the issue. As a temporary workaround, consider disabling the affected code by setting LWS WITHOUT EXTENSIONS to ON and LWS WITH HTTP STREAM COMPRESSION to OFF in CMake, unless these settings are required for specific functionality.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Libwebsockets