Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-33217

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, when using ACLs on message...

8.1CVSS6.4AI score0.00259EPSS
Exploits0References3
OSV
OSV
added 2026/03/25 8:16 p.m.4 views

DEBIAN-CVE-2026-33217

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, when using ACLs on message subjects, these ACLs were not applied in the $MQTT. namespace, allowing MQTT clients to bypass ACL checks for MQTT subjects. Versions...

6.5CVSS6.1AI score0.00259EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/03/25 7:43 p.m.4 views

CVE-2026-33217

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, when using ACLs on message subjects, these ACLs were not applied in the $MQTT. namespace, allowing MQTT clients to bypass ACL checks for MQTT subjects. Versions...

8.1CVSS6.1AI score0.00259EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/25 7:43 p.m.3 views

CVE-2026-33217

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, when using ACLs on message subjects, these ACLs were not applied in the $MQTT. namespace, allowing MQTT clients to bypass ACL checks for MQTT subjects. Versions...

7.1CVSS5.8AI score0.00259EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/25 7:43 p.m.3 views

CVE-2026-33217 NATS allows MQTT clients to bypass ACL checks

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, when using ACLs on message subjects, these ACLs were not applied in the $MQTT. namespace, allowing MQTT clients to bypass ACL checks for MQTT subjects. Versions...

7.1CVSS5.9AI score0.00259EPSS
Exploits0References4
Circl
Circl
added 2026/03/25 7:16 p.m.4 views

CVE-2026-33217

creationtimestamp| type| source ---|---|--- 2026-03-25 19:16:32+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-33217 2026-03-27 03:00:15+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhz4tngrvz2k...

8.1CVSS5.7AI score0.00259EPSS
Exploits0References2
Rows per page
Query Builder