RSS   Vulnerabilities for 'Nats-server'   RSS

2020-11-06
 
CVE-2020-26892

CWE-798
 

 
The JWT library in NATS nats-server before 2.1.9 has Incorrect Access Control because of how expired credentials are handled.

 
 
CVE-2020-26521

CWE-476
 

 
The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a nil dereference in Go code).

 

 >>> Vendor: Linuxfoundation 32 Products
Foomatic-filters
XEN
DOJO
DEX
Fabric
Foomatic
Cups-filters
CEPH
RUNC
Harbor
Osquery
Open network operating system
ACRN
The update framework
Dojox
Argo continuous delivery
Free range routing
Jaeger
Nats-server
Containerd
Spinnaker
Indy-node
BESU
Argo-cd
Umoci
Backstage
Grpc swift
Cortex
Open container initiative distribution specification
Open container initiative image format specification
Auth backend
Kubeedge


Copyright 2024, cxsecurity.com

 

Back to Top