A vulnerability, which was classified as critical , was found in sparklemotion nokogiri up to 1.19.3 . Affected is an unknown function. Executing a manipulation can lead to out-of-bounds read. This vulnerability is registered as CVE-2026-57235 . It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.