CVE-2024-37890 | websockets ws up to 5.2.3/6.2.2/7.5.9/8.17.0 on Node.js Request Header null pointer dereference

Posted by Angelo Barbosa | Jun 17, 2024 | CVE

A vulnerability was found in websockets ws up to 5.2.3/6.2.2/7.5.9/8.17.0 on Node.js. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Request Header Handler. The manipulation leads to null pointer dereference.

This vulnerability is known as CVE-2024-37890. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37890 | websockets ws up to 5.2.3/6.2.2/7.5.9/8.17.0 on Node.js Request Header null pointer dereference

Related Posts

CVE-2024-42561 | Pharmacy Management System a2efc8 sales_report.php invoice_number sql injection

CVE-2024-21664 | lestrrat-go jwx up to 2.0.18 JSON deserialization

CVE-2024-34785 | Ivanti EPM 2024/up to 2022 SU5 sql injection

CVE-2024-27234 | Google Android fvp.c fvp_set_target information disclosure