CVE-2026-33222 | nats-io nats-server up to 2.11.14/2.12.5 JetStream authorization

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability identified as problematic has been detected in nats-io nats-server up to 2.11.14/2.12.5. Affected by this issue is some unknown functionality of the component JetStream. The manipulation leads to authorization bypass.

This vulnerability is documented as CVE-2026-33222. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-33222 | nats-io nats-server up to 2.11.14/2.12.5 JetStream authorization

Post correlati

CVE-2024-38502 | Pepperl+Fuchs MOD-16RJ45 cross site scripting (VDE-2024-033)

CVE-2022-49282 | Linux Kernel up to 5.4.188/5.10.109/5.15.32/5.16.18/5.17.1 f2fs_quota_sync null pointer dereference

CVE-2025-13564 | SourceCodester Pre-School Management System 1.0 FilehelperController.php removefile filepath denial of service

CVE-2024-30234 | Wholesale Team WholesaleX Plugin up to 1.3.1 on WordPress authorization