CVE-2026-57436 | sparklemotion nokogiri up to 1.19.3 Garbage Collection Document#root= use after free

A vulnerability, which was classified as critical, has been found in sparklemotion nokogiri up to 1.19.3. This impacts the function Nokogiri::XML::Document#root= of the component Garbage Collection Handler. Performing a manipulation results in use after free.

This vulnerability is cataloged as CVE-2026-57436. It is possible to initiate the attack remotely. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More