WebSocket - CVE CyberSecurity Database News (Page 2)

CVE-2024-52316: Unchecked Error Condition Vulnerability in Apache Tomcat Allowing User Authentication Bypass

Nov 18, 2024 API WebSocket Java Apache

CVE-2024-52316: Unchecked Error Condition Vulnerability in Apache Tomcat Allowing User Authentication Bypass

A vulnerability has been discovered in Apache Tomcat, identified as CVE-2024-52316, that could potentially allow users to bypass the authentication process when a custom Jakarta

Nov 11, 2024 API WebSocket

CVE-2024-52532: Addressing Infinite Loop and Memory Consumption in GNOME libsoup before 3.6.1

The Common Vulnerabilities and Exposures (CVE) Identifier "CVE-2024-52532" has been assigned to a significant issue found in the GNOME libraries before version 3.

Jul 1, 2024 Exploit WebSocket

CVE-2024-36387 - WebSocket Protocol Upgrades over HTTP/2 leading to Null Pointer Dereference and Server Process Crash

A recent vulnerability has been discovered in the way some server implementations handle WebSocket protocol upgrades over an HTTP/2 connection. This vulnerability, assigned CVE-2024-36387,

Jun 17, 2024 Exploit WebSocket

CVE-2024-37890 - Avoiding WebSocket Server Crash in ws by Limiting Header Count

Introduction: In recent times, a vulnerability was discovered in the WebSocket client and server module for Node.js, known as ws. This vulnerability allows malicious

Apr 25, 2024 Exploit WebSocket Red Hat red hat ansible automation platform 2.4 for rhel 9

CVE-2024-1657: Unsecured Ansible WebSocket Vulnerability Puts Rulebook Data at Risk

In the modern era of software development and automation, Ansible has emerged as a popular platform for automating various tasks and streamlining the deployment of