CVE-2026-33248 | nats-io nats-server up to 2.11.14/2.12.5 mTLS verify_and_map certificate validation

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability marked as critical has been reported in nats-io nats-server up to 2.11.14/2.12.5. This vulnerability affects the function verify_and_map of the component mTLS. This manipulation causes improper certificate validation.

This vulnerability appears as CVE-2026-33248. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-33248 | nats-io nats-server up to 2.11.14/2.12.5 mTLS verify_and_map certificate validation

Post correlati

CVE-2024-7852 | SourceCodester Yoga Class Registration System 1.0 view_inquiry.php message cross site scripting

CVE-2020-37050 | M.J.M Soft Quick Player 1.3 File buffer overflow (Exploit 48564 / EDB-48564)

CVE-2024-57184 | GPAC MP4Box 0.8.0 media_tools/mpegts.c gf_m2ts_process_pmt heap-based overflow (Issue 1421)

CVE-2023-47711 | IBM Security Guardium 11.3/11.4/11.5/12.0 unrestricted upload (XFDB-271526)