Out-of-Bounds Write in Warmcat Libwebsockets Affects Web Applications
CVE-2025-11680

5.9MEDIUM

Key Information:

Vendor: Warmcat
Status: Libwebsockets
Vendor: CVE Published:; 20 October 2025

What is CVE-2025-11680?

A vulnerability exists in warmcat's libwebsockets that allows for out-of-bounds writing when the LWS_WITH_UPNG flag is enabled and the HTML display stack is utilized. This flaw can be exploited by an attacker when a user visits a specially crafted webpage that includes a manipulated PNG file. The crafted file can trigger an integer overflow due to an oversized width value, resulting in potentially arbitrary write operations past allocated heap buffers. This vulnerability poses a risk of application crashes or execution of unintended code, emphasizing the need for vigilant security practices.

Affected Version(s)

libwebsockets 4.0 <= 4.4.2

libwebsockets 4.0 <= 4.3.6

References

https://libwebsockets.org/git/libwebsockets/commit?id=2b7...

patchvendor-advisory

https://www.nozominetworks.com/labs/vulnerability-advisor...

third-party-advisory

CVSS V4

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 20, 2025
Vulnerability Reserved
Oct 13, 2025

Credit

Raffaele Bova at Nozomi Networks

JSON