Lucene search
K

860 matches found

NVD
NVD
added 2026/03/27 4:16 p.m.6 views

CVE-2026-4959

A vulnerability was found in OpenBMB XAgent 1.0.0. This impacts the function checkuser of the file XAgentServer/application/websockets/share.py of the component ShareServer WebSocket Endpoint. Performing a manipulation of the argument interactionid results in missing authentication. Remote...

7.5CVSS0.0043EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/03/27 12:25 a.m.2 views

SUSE CVE-2026-27889

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and 2.12.5, a missing sanity check on a WebSockets frame could trigger a server panic in the nats-server. This happens before authentication, and...

7.5CVSS6AI score0.00582EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/27 12:0 a.m.7 views

XAgent 安全漏洞

XAgent is an open-source, experimental large language model-driven autonomous agent developed by OpenBMB. Version 1.0.0 of XAgent contains a security vulnerability, which stems from incorrect handling of the parameter interactionid in the file XAgentServer/application/websockets/replayer.py,...

6.5CVSS5.8AI score0.00383EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2026/03/26 2:43 p.m.3 views

SUSE CVE-2026-33219

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

5.3CVSS5.9AI score0.00532EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-27889

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and...

7.5CVSS6.4AI score0.00582EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-33219

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which c...

7.5CVSS6.4AI score0.00532EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/25 9:21 p.m.4 views

CVE-2026-27889

A flaw was found in NATS-Server, a high-performance messaging system. A remote attacker can exploit this vulnerability before authentication by sending a specially crafted WebSockets frame. This missing sanity check can trigger a server panic, leading to a Denial of Service DoS for affected...

7.5CVSS5.7AI score0.00582EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/25 9:16 p.m.5 views

CVE-2026-33219

A flaw was found in NATS-Server. A malicious client connecting to the WebSockets port can cause unbounded memory use before authentication by sending a large amount of data. This resource exhaustion vulnerability can lead to a Denial of Service DoS for the server, making it unavailable to...

7.5CVSS5.6AI score0.00532EPSS
Exploits0References7
OSV
OSV
added 2026/03/25 8:16 p.m.3 views

DEBIAN-CVE-2026-33219

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

5.3CVSS6.1AI score0.00532EPSS
Exploits0References1
NVD
NVD
added 2026/03/25 8:16 p.m.6 views

CVE-2026-33219

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

7.5CVSS0.00532EPSS
Exploits0References10
OSV
OSV
added 2026/03/25 8:16 p.m.1 views

DEBIAN-CVE-2026-27889

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and 2.12.5, a missing sanity check on a WebSockets frame could trigger a server panic in the nats-server. This happens before authentication, and...

7.5CVSS6.2AI score0.00582EPSS
Exploits0References1
NVD
NVD
added 2026/03/25 8:16 p.m.4 views

CVE-2026-27889

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and 2.12.5, a missing sanity check on a WebSockets frame could trigger a server panic in the nats-server. This happens before authentication, and...

7.5CVSS0.00582EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/03/25 8:16 p.m.6 views

CVE-2026-27889

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and 2.12.5, a missing sanity check on a WebSockets frame could trigger a server panic in the nats-server. This happens before authentication, and...

7.5CVSS6.4AI score0.00582EPSS
Exploits0References3
OSV
OSV
added 2026/03/25 8:16 p.m.3 views

UBUNTU-CVE-2026-33219

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

7.5CVSS5.8AI score0.00532EPSS
Exploits0References6
OSV
OSV
added 2026/03/25 8:16 p.m.3 views

UBUNTU-CVE-2026-27889

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and 2.12.5, a missing sanity check on a WebSockets frame could trigger a server panic in the nats-server. This happens before authentication, and...

7.5CVSS5.8AI score0.00582EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/25 8:16 p.m.2 views

CVE-2026-33219

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

5.3CVSS6.4AI score0.00532EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/25 7:55 p.m.3 views

CVE-2026-33219

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

7.5CVSS6AI score0.00532EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/25 7:55 p.m.7 views

CVE-2026-33219

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

7.5CVSS5.8AI score0.00532EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/03/25 7:55 p.m.23 views

CVE-2026-33219 NATS is vulnerable to pre-auth DoS through WebSockets client service

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

5.3CVSS0.00532EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/25 7:55 p.m.5 views

CVE-2026-33219 NATS is vulnerable to pre-auth DoS through WebSockets client service

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.15 and 2.12.6, a malicious client which can connect to the WebSockets port can cause unbounded memory use in the nats-server before authentication; this requires sending a...

5.3CVSS5.8AI score0.00532EPSS
Exploits0References4
Rows per page
Query Builder