Browse all 3 CVE security advisories affecting Hiawatha. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-57784 | Tomahawk authentication timing attack due to usage of 'strcmp' — Hiawatha Web server | 7.7AI | HighAI | 2026-01-26 |
| CVE-2025-57785 | Double free in XSLT in 'show_index' — Hiawatha Web server | 9.8AI | CriticalAI | 2026-01-26 |
| CVE-2025-57783 | Improper header parsing may lead to request smuggling — Hiawatha Web server | 8.2AI | HighAI | 2026-01-26 |
This page lists every published CVE security advisory associated with Hiawatha. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.