Out-of-Bounds Read Vulnerability in Libwebsockets Affects Multiple Applications
CVE-2025-11679

5.9MEDIUM

Key Information:

Vendor: Warmcat
Status: Libwebsockets
Vendor: CVE Published:; 20 October 2025

What is CVE-2025-11679?

The vulnerability in Libwebsockets arises due to an out-of-bounds read condition in the lws_upng_emit_next_line function. When the LWS_WITH_UPNG flag is enabled and the HTML display stack is utilized, the vulnerability may allow an attacker to read beyond a heap-allocated buffer. This could result in application crashes when users visit maliciously crafted websites containing specially designed PNG files, particularly those with exaggerated height dimensions. Implementing the latest patches is crucial to secure applications against this potential exploit.

Affected Version(s)

libwebsockets 4.0 <= 4.4.2

libwebsockets 4.0 <= 4.3.6

References

https://libwebsockets.org/git/libwebsockets/commit?id=7df...

patchvendor-advisory

https://www.nozominetworks.com/labs/vulnerability-advisor...

third-party-advisory

CVSS V4

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 20, 2025
Vulnerability Reserved
Oct 13, 2025

Credit

Raffaele Bova at Nozomi Networks

JSON