Lucene search

K
cvelistMitreCVELIST:CVE-2020-26892
HistoryNov 06, 2020 - 7:36 a.m.

CVE-2020-26892

2020-11-0607:36:45
mitre
www.cve.org
6
nats nats-server
jwt library
cve-2020-26892
access control

AI Score

9.5

Confidence

High

EPSS

0.002

Percentile

61.6%

The JWT library in NATS nats-server before 2.1.9 has Incorrect Access Control because of how expired credentials are handled.

AI Score

9.5

Confidence

High

EPSS

0.002

Percentile

61.6%