Vulnerability Details CVE-2025-57785
A Double Free in XSLT `show_index` has been identified in Hiawatha webserver version 11.7 which allows an unauthenticated attacker to corrupt data which may lead to arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.0%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2025-57785
-
cpe:2.3:a:hiawatha.leisink:hiawatha_webserver:11.7