websockets is vulnerable to denial of service attacks. The application does not properly enforce a size limit when decompressing frames, allowing a malicious user to pass a zip bomb to the application to consume memory and crash it.
CPE | Name | Operator | Version |
---|---|---|---|
websockets | le | 4.1 | |
websockets | le | 4.1 |