CVE-2022-22971 Spring versions before 5.3.20 and 5.2.22 were vulnerable to a DoS attack with STOMP over WebSocket.
In such a scenario, the user connects to the authenticated server and sends a message to the STOMP over WebSocket endpoint (such as “hello” or
CVE-2022-24595 - Incorrect Access Control in Automotive Grade Linux Kooky Koi 11.x Versions
A critical vulnerability has been discovered in the Automotive Grade Linux (AGL) Kooky Koi 11.., 11..1, 11..2, 11..3, 11..4, and 11.