CVE-2026-58172 | ThreeMammals Ocelot up to 24.1.0 WebSocket Upgrade OcelotPipelineExtensions.cs authentication bypass (Issue 2403)

SecurityVulns

A vulnerability has been found in ThreeMammals Ocelot up to 24.1.0 and classified as critical. Affected by this issue is some unknown functionality of the file OcelotPipelineExtensions.cs of the component WebSocket Upgrade Handler. This manipulation causes authentication bypass using alternate channel.

This vulnerability is handled as CVE-2026-58172. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More