Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/nats-io/nats-server/v2

go · Repository · Package

Security Advisories for github.com/nats-io/nats-server/v2 in go

Critical
6 months ago

NATS Server may fail to authorize certain Jetstream admin APIs GSA_kwCzR0hTQS1maGc4LXF4aDUtN3Ezd84ABG0V

go github.com/nats-io/nats-server/v2
High
about 1 year ago

NATS Server and Streaming Server fails to enforce negative user permissions, may allow denied subjects GSA_kwCzR0hTQS0yaDJ4LThoaDItbWZxOM4AA90Q

go github.com/nats-io/nats-streaming-server, github.com/nats-io/nats-server/v2
Low
over 1 year ago

NATS server TLS missing ciphersuite settings when CLI flags used GSA_kwCzR0hTQS1qajU0LTVxMm0tcTdwas4AA8Ef

go github.com/nats-io/nats-server/v2
High
almost 2 years ago

xkeys seal encryption used fixed key for all encryption GSA_kwCzR0hTQS1tcjQ1LXJ4OHEtd2NtOc4AA207

go github.com/nats-io/nats-server/v2, github.com/nats-io/nkeys
High
almost 2 years ago

NATS.io: Adding accounts for just the system account adds auth bypass GSA_kwCzR0hTQS1mcjJnLTloam0td3IyM84AA2kD

go github.com/nats-io/nats-server/v2
High
over 3 years ago

Arbitrary file write in nats-server GSA_kwCzR0hTQS02aDNtLTM2dzgtaHY2OM0xNA

go github.com/nats-io/nats-streaming-server, github.com/nats-io/nats-server/v2
High
over 3 years ago

Denial of service in github.com/nats-io/nats-server/server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW00angtNjUyNi12dmht

go github.com/nats-io/nats-server/v2, github.com/nats-io/nats-server
Critical
over 3 years ago

Incorrect handling of credential expiry by /nats-io/nats-server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3NXgteDUzOS1wcGY1

go github.com/nats-io/nats-server/v2, github.com/nats-io/jwt
High
over 3 years ago

Incorrect Authorization in NATS nats-server GSA_kwCzR0hTQS1nNnc2LXI3NmMtMjhqN80psA

go github.com/nats-io/nats-server/v2, github.com/nats-io/nats-streaming-server
High
over 4 years ago

github.com/nats-io/nats-server Import token permissions checking not enforced MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3NTYtZjI3My14aHA0

go github.com/nats-io/nats-server/v2
Low
over 4 years ago

Import loops in account imports, nats-server DoS MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd3ajUtM3ZmcS1xOTky

go github.com/nats-io/nats-server/v2
High
over 4 years ago

Nil dereference in NATS JWT causing DoS of nats-server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtbTktcjJtMi1xZzl3

go github.com/nats-io/jwt, github.com/nats-io/nats-server/v2
High
over 4 years ago

Incorrect handling of credential expiry by /nats-io/nats-server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJjNjQtdmo4Zy12d3Jx

go github.com/nats-io/jwt, github.com/nats-io/nats-server/v2
High
over 4 years ago

Integer Overflow or Wraparound in NATS Server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwNGotNDdmOS0ydmMz

go github.com/nats-io/nats-server/v2

Filter by Severity

High 10 Low 2 Critical 2