13 matches found
Security Bulletin: A flaw was found in NATS-SERVER which affect IBM watsonx.data
Summary ATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially...
Azure Linux 3.0 Security Update: telegraf (CVE-2025-30215)
The version of telegraf installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-30215 advisory. - NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In...
CVE-2025-30215 affecting package telegraf for versions less than 1.29.4-15
CVE-2025-30215 affecting package telegraf for versions less than 1.29.4-15. A patched version of the package is available...
CVE-2025-30215 affecting package telegraf for versions less than 1.31.0-9
CVE-2025-30215 affecting package telegraf for versions less than 1.31.0-9. A patched version of the package is available...
CVE-2025-30215 vulnerabilities
Vulnerabilities for packages: nats-top, nats-server, telegraf...
CVE-2025-30215
A flaw was found in NATS-SERVER. In affected versions of NATS-SERVER, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially exposed into regular accounts to allow account holders to manage their assets. Some JS API requests...
CVE-2025-30215
NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...
CVE-2025-30215
NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...
UBUNTU-CVE-2025-30215
NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...
CVE-2025-30215 NATS-Server Fails to Authorize Certain Jetstream Admin APIs
NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...
CVE-2025-30215
NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...
CVE-2025-30215 NATS-Server Fails to Authorize Certain Jetstream Admin APIs
NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...
CVE-2025-30215
creationtimestamp| type| source ---|---|--- 2025-04-08 21:24:12+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lmdfwoy3tt2z 2025-04-15 19:49:11+00:00| published-proof-of-concept| https://github.com/nats-io/nats-server/security/advisories/GHSA-fhg8-qxh5-7q3w 2025-04-16...