2026-01-26 17:47:19
certcc
PUBLISHED
Tomahawk auth timing attack due to usage of `strcmp` has been identified in Hiawatha webserver version 11.7 which allows a local attacker to access the management client.