CVE-2023-50475
CVE-2023-50475 affects bcoin-org/bcoin v2.2.0 in the bsock component, via the vendor\faye-websocket.js allowing remote attackers to disclose sensitive information by using weak hashing algorithms (e.g., MD5/SHA1). The Red Hat/Veracode/OSV reports corroborate a weakness in the websocket hashing us...