CVE-2026-24696 — The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by — CVE Database · The Intelligence Room