Description

Out-of-bounds Write in unfilter_scanline in warmcat libwebsockets allows, when the LWS_WITH_UPNG flag is enabled during compilation and the HTML display stack is used, to write past a heap allocated buffer possibly causing a crash, when the user visits an attacker controlled website that contains a crafted PNG file with a big width value that causes an integer overflow which value is used for determining the size of a heap allocation.

INFO

Published Date :

2025-10-20T14:04:06.854Z

Last Modified :

2025-10-20T14:34:57.848Z

Source :

Nozomi
AFFECTED PRODUCTS

The following products are affected by CVE-2025-11680 vulnerability.

Vendors Products
Warmcat
  • Libwebsockets
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-11680.

URL Resource
https://libwebsockets.org/git/libwebsockets/commit?id=2b715249f39291c86443b969a1088d59b6a89b78 cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-11680 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-11680 cve-icon
https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-11680 cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact