Search CVE reports
271 – 280 of 33329 results
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, users with JetStream admin API access to restore one stream could restore to other stream names,...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, if a nats-server is run with static credentials for all clients provided via argv (the...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats-server offers a `Nats-Request-Info:` message header, providing information about a request. This is supposed to provide...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a client which can connect to the leafnode port can crash the nats-server with a certain...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, when using ACLs on message subjects, these ACLs were not applied in the `$MQTT.>` namespace,...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, for MQTT deployments using usercodes/passwords: MQTT passwords are incorrectly classified as a...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.14 and 2.12.5, if the nats-server has the "leafnode" configuration enabled (not default), then anyone who can...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and 2.12.5, a missing sanity check on a WebSockets frame could trigger a...
1 affected package
nats-server
| Package | 24.04 LTS |
|---|---|
| nats-server | Needs evaluation |
An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote attacker to escalate privileges via the osslsigncode.c component
1 affected package
osslsigncode
| Package | 24.04 LTS |
|---|---|
| osslsigncode | Needs evaluation |