The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks or brute-force attacks to gain unauthorized access.
References
Configurations
No configuration.
History
25 Jun 2026, 22:17
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-06-25 22:17
Updated : 2026-06-26 20:21
NVD link : CVE-2026-50176
Mitre link : CVE-2026-50176
CVE.ORG link : CVE-2026-50176
JSON object : View
Products Affected
No product.
CWE
CWE-307
Improper Restriction of Excessive Authentication Attempts
