CVE-2026-45736 | websockets ws up to 8.20.0 websocket.close Reason uninitialized resource (GHSA-58qx-3vcg-4xpx)

Inserito da Angelo Barbosa | Mag 15, 2026 | CVE

A vulnerability marked as problematic has been reported in websockets ws up to 8.20.0. This affects the function websocket.close. Performing a manipulation of the argument Reason results in uninitialized resource.

This vulnerability is cataloged as CVE-2026-45736. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-45736 | websockets ws up to 8.20.0 websocket.close Reason uninitialized resource (GHSA-58qx-3vcg-4xpx)

Post correlati

CVE-2024-6496 | Light Poll Plugin up to 1.0.0 on WordPress cross-site request forgery

CVE-2024-54378 | Quietly Insights Plugin up to 1.2.2 on WordPress authorization

CVE-2025-10091 | Jinher OA up to 1.2 XML ?Type=add xml external entity reference

CVE-2024-46688 | Linux Kernel up to 6.10.7 erofs z_erofs_gbuf_growsize memory leak (49c0e0819980/0005e01e1e87)