Nats - Nats Streaming Server CVE

Filtered by vendor Nats Subscribe

Filtered by product Nats Streaming Server

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-24450	1 Nats	2 Nats Server, Nats Streaming Server	2023-08-08	9.0 HIGH	8.8 HIGH
NATS nats-server before 2.7.2 has Incorrect Access Control. Any authenticated user can obtain the privileges of the System account by misusing the "dynamically provisioned sandbox accounts" feature.

Vulnerabilities (CVE)