Back to CVE List

CVE-2025-57784

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
4.0 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Vulnerability Description

Tomahawk auth timing attack due to usage of `strcmp` has been identified in Hiawatha webserver version 11.7 which allows a local attacker to access the management client.

Vulnerability Details

Published Date
Last Modified
Source
NVD
Vendor
Hiawatha
Product
Hiawatha Web server

External References

Discussion (0)

Add Comment

No comments yet. Be the first!