A vulnerability was identified in the Feast Feature...
High severity
Unreviewed
Published
Jul 16, 2026
to the GitHub Advisory Database
•
Updated Jul 16, 2026
Description
Published by the National Vulnerability Database
Jul 16, 2026
Published to the GitHub Advisory Database
Jul 16, 2026
Last updated
Jul 16, 2026
A vulnerability was identified in the Feast Feature Server's
/ws/chatendpoint that allows remote attackers to establish persistent WebSocket connections without any authentication. By opening a large number of simultaneous connections, an attacker can exhaust server resources—such as memory, CPU, and file descriptors—leading to a complete denial of service for legitimate users.References