CVE-2026-57437 | sparklemotion nokogiri up to 1.19.3 Garbage Collection XPathContext use after free

A vulnerability classified as critical was found in sparklemotion nokogiri up to 1.19.3. This affects the function Nokogiri::XML::XPathContext of the component Garbage Collection Handler. Such manipulation leads to use after free.

This vulnerability is listed as CVE-2026-57437. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is advised.VulDB Recent EntriesRead More