Lucene search
K

13 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/07/16 5:55 a.m.7 views

Security Bulletin: A flaw was found in NATS-SERVER which affect IBM watsonx.data

Summary ATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially...

9.6CVSS7AI score0.00561EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/04/23 12:0 a.m.15 views

Azure Linux 3.0 Security Update: telegraf (CVE-2025-30215)

The version of telegraf installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-30215 advisory. - NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In...

9.6CVSS7.7AI score0.00561EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/04/22 9:14 p.m.8 views

CVE-2025-30215 affecting package telegraf for versions less than 1.29.4-15

CVE-2025-30215 affecting package telegraf for versions less than 1.29.4-15. A patched version of the package is available...

9.6CVSS7.3AI score0.00561EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/04/22 3:8 p.m.7 views

CVE-2025-30215 affecting package telegraf for versions less than 1.31.0-9

CVE-2025-30215 affecting package telegraf for versions less than 1.31.0-9. A patched version of the package is available...

9.6CVSS7.3AI score0.00561EPSS
Exploits0
Wolfi
Wolfi
added 2025/04/16 1:44 p.m.20 views

CVE-2025-30215 vulnerabilities

Vulnerabilities for packages: nats-top, nats-server, telegraf...

9.6CVSS7AI score0.00561EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/16 12:42 p.m.22 views

CVE-2025-30215

A flaw was found in NATS-SERVER. In affected versions of NATS-SERVER, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially exposed into regular accounts to allow account holders to manage their assets. Some JS API requests...

9.6CVSS9.4AI score0.00561EPSS
Exploits0References5
NVD
NVD
added 2025/04/16 12:15 a.m.13 views

CVE-2025-30215

NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...

9.6CVSS0.00561EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/04/16 12:15 a.m.11 views

CVE-2025-30215

NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...

9.6CVSS7.1AI score0.00561EPSS
Exploits0References3
OSV
OSV
added 2025/04/16 12:15 a.m.3 views

UBUNTU-CVE-2025-30215

NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...

9.6CVSS7.1AI score0.00561EPSS
Exploits0References4
OSV
OSV
added 2025/04/15 11:25 p.m.13 views

CVE-2025-30215 NATS-Server Fails to Authorize Certain Jetstream Admin APIs

NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...

9.6CVSS7.9AI score0.00561EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2025/04/15 11:25 p.m.4 views

CVE-2025-30215

NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...

9.6CVSS6.8AI score0.00561EPSS
Exploits0
Cvelist
Cvelist
added 2025/04/15 11:25 p.m.25 views

CVE-2025-30215 NATS-Server Fails to Authorize Certain Jetstream Admin APIs

NATS-Server is a High-Performance server for NATS.io, the cloud and edge native messaging system. In versions starting from 2.2.0 but prior to 2.10.27 and 2.11.1, the management of JetStream assets happens with messages in the $JS. subject namespace in the system account; this is partially expose...

9.6CVSS0.00561EPSS
Exploits0References2
Circl
Circl
added 2025/04/08 9:24 p.m.7 views

CVE-2025-30215

creationtimestamp| type| source ---|---|--- 2025-04-08 21:24:12+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lmdfwoy3tt2z 2025-04-15 19:49:11+00:00| published-proof-of-concept| https://github.com/nats-io/nats-server/security/advisories/GHSA-fhg8-qxh5-7q3w 2025-04-16...

9.6CVSS7.3AI score0.00561EPSS
Exploits0References8
Rows per page
Query Builder