6 matches found
ROOT-APP-GOBINARY-CVE-2026-33216 CVE-2026-33216 in rootio-github.com/nats-io/nats-server/v2 - Patched by Root
Root has patched CVE-2026-33216 in the rootio-github.com/nats-io/nats-server/v2 package for Root:Go. Multiple fixed versions available...
CVE-2026-33216 affecting package telegraf for versions less than 1.31.0-18
CVE-2026-33216 affecting package telegraf for versions less than 1.31.0-18. A patched version of the package is available...
CVE-2026-33216
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, for MQTT deployments using usercodes/passwords: MQTT passwords are incorrectly classified as a non-authenticating identity statement JWT and exposed via monitoring...
CVE-2026-33216 vulnerabilities
Vulnerabilities for packages: nats-top, k3s, nats, telegraf, kine...
CVE-2026-33216 NATS has MQTT plaintext password disclosure
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, for MQTT deployments using usercodes/passwords: MQTT passwords are incorrectly classified as a non-authenticating identity statement JWT and exposed via monitoring...
CVE-2026-33216
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, for MQTT deployments using usercodes/passwords: MQTT passwords are incorrectly classified as a non-authenticating identity statement JWT and exposed via monitoring...