A vulnerability marked as problematic has been reported in websockets ws up to 8.20.0 . This affects the function websocket.close . Performing a manipulation of the argument Reason results in uninitialized resource. This vulnerability is cataloged as CVE-2026-45736 . It is possible to initiate the attack remotely. There is no exploit available. It is suggested to upgrade the affected component.