CVE-2026-40289 | MervinPraison PraisonAI/praisonaiagents WebSocket Endpoint /ws missing authentication (GHSA-8x8f-54wf-vv92)

A vulnerability identified as critical has been detected in MervinPraison PraisonAI and praisonaiagents. This affects an unknown function of the file /ws of the component WebSocket Endpoint. The manipulation leads to missing authentication.

This vulnerability is listed as CVE-2026-40289. The attack may be initiated remotely. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More