CVE-2026-31903 — The WebSocket Application Programming Interface lacks restrictions on the number of authentication requests. This absence of rate limiting may allow an attacker to conduct denial-of-service attacks by — CVE Database · The Intelligence Room