CVE-2024-37890 | websockets ws up to 5.2.3/6.2.2/7.5.9/8.17.0 on Node.js Request Header null pointer dereference

Posted by Angelo Barbosa | Jun 17, 2024 | CVE

A vulnerability was found in websockets ws up to 5.2.3/6.2.2/7.5.9/8.17.0 on Node.js. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Request Header Handler. The manipulation leads to null pointer dereference.

This vulnerability is known as CVE-2024-37890. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37890 | websockets ws up to 5.2.3/6.2.2/7.5.9/8.17.0 on Node.js Request Header null pointer dereference

Related Posts

CVE-2024-41084 | Linux Kernel up to 6.6.36/6.9.7 cxl_dpa_to_region null pointer dereference (a9e099e29e92/b8a40a6dbfb0/285f2a088414)

CVE-2024-7877 | Appointment Booking Calendar Plugin on WordPress Notification Setting cross site scripting

CVE-2024-2086 | Integrate Google Drive Plugin up to 1.3.8 on WordPress Setting authorization

CVE-2024-8350 | Uncanny Groups for LearnDash Plugin up to 6.1.0.1 on WordPress User Group Add authorization