CVE-2026-23538
EUVD-2026-4483816.07.2026, 01:16
A vulnerability was identified in the Feast Feature Server's `/ws/chat` endpoint that allows remote attackers to establish persistent WebSocket connections without any authentication. By opening a large number of simultaneous connections, an attacker can exhaust server resources—such as memory, CPU, and file descriptors—leading to a complete denial of service for legitimate users.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.
References