Websockets Ws
3 CVEs affecting Websockets Ws. Latest disclosed: 2026-05-15. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-37890 | High | 7.5 | 2024-06-17 | ws is an open source WebSocket client and server for Node.js. A request with a number of headers exceeding theserver.maxHeadersCount threshold could be used to… |
CVE-2021-32640 | Medium | 5.3 | 2021-05-25 | ws is an open source WebSocket client and server library for Node.js. A specially crafted value of the `Sec-Websocket-Protocol` header can be used to significa… |
CVE-2026-45736 | Medium | 4.4 | 2026-05-15 | ws is an open source WebSocket client and server for Node.js. Prior to 8.20.1, the websocket.close() implementation is vulnerable to uninitialized memory discl… |