CVE-2023-23602 — A mishandled security check when creating a WebSocket in a WebWorker caused the Content Security Policy connect-src header to be ignored. This could lead to connections to restricted origins from insi — CVE Database · The Intelligence Room