An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/nats-io/nats-server/v2

go · Repository · Package

Security Advisories for github.com/nats-io/nats-server/v2 in go

High
about 1 year ago

NATS Server and Streaming Server fails to enforce negative user permissions, may allow denied subjects GSA_kwCzR0hTQS0yaDJ4LThoaDItbWZxOM4AA90Q

go github.com/nats-io/nats-streaming-server, github.com/nats-io/nats-server/v2
High
almost 2 years ago

xkeys seal encryption used fixed key for all encryption GSA_kwCzR0hTQS1tcjQ1LXJ4OHEtd2NtOc4AA207

go github.com/nats-io/nats-server/v2, github.com/nats-io/nkeys
High
over 3 years ago

Arbitrary file write in nats-server GSA_kwCzR0hTQS02aDNtLTM2dzgtaHY2OM0xNA

go github.com/nats-io/nats-streaming-server, github.com/nats-io/nats-server/v2
High
over 3 years ago

Denial of service in github.com/nats-io/nats-server/server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW00angtNjUyNi12dmht

go github.com/nats-io/nats-server/v2, github.com/nats-io/nats-server
Critical
over 3 years ago

Incorrect handling of credential expiry by /nats-io/nats-server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3NXgteDUzOS1wcGY1

go github.com/nats-io/nats-server/v2, github.com/nats-io/jwt
High
over 3 years ago

Incorrect Authorization in NATS nats-server GSA_kwCzR0hTQS1nNnc2LXI3NmMtMjhqN80psA

go github.com/nats-io/nats-server/v2, github.com/nats-io/nats-streaming-server
High
over 4 years ago

Nil dereference in NATS JWT causing DoS of nats-server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtbTktcjJtMi1xZzl3

go github.com/nats-io/jwt, github.com/nats-io/nats-server/v2
High
over 4 years ago

Incorrect handling of credential expiry by /nats-io/nats-server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJjNjQtdmo4Zy12d3Jx

go github.com/nats-io/jwt, github.com/nats-io/nats-server/v2