A vulnerability classified as critical was found in sparklemotion nokogiri up to 1.19.3 . This affects the function Nokogiri::XML::XPathContext of the component Garbage Collection Handler . Such manipulation leads to use after free. This vulnerability is listed as CVE-2026-57437 . The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.