CVE-2026-15542

Summary

A vulnerability has been found in will-moss Isaiah up to 1.36.9. This affects an unknown function of the file app/main.go of the component Websocket Connection Authentication. The manipulation leads to improper authentication. The attack can be initiated remotely. The pull request to fix this issue awaits acceptance.

Affected Software

VendorProductVersion RangeStatus
will-mossIsaiah1.36.0affected
will-mossIsaiah1.36.1affected
will-mossIsaiah1.36.2affected
will-mossIsaiah1.36.3affected
will-mossIsaiah1.36.4affected
will-mossIsaiah1.36.5affected
will-mossIsaiah1.36.6affected
will-mossIsaiah1.36.7affected
will-mossIsaiah1.36.8affected
will-mossIsaiah1.36.9affected

Weaknesses

  • CWE-287: Improper Authentication

References