Homepage
About Snyk

github.com/nats-io/nats-server/v2/server vulnerabilities

  • licenses detected

    • (Apache-2.0 OR MIT)
      >=v0.5.1 <v0.5.2-0.20140425191158-2141cc738119; >=v0.5.2 <v0.5.3-0.20140508202536-4a522014f603; >=v0.5.4 <v0.5.5-0.20140731181439-c01c3e15d9f5; >=v0.5.6 <v0.5.7-0.20140911001801-509ed9f45cee; >=v0.6.0 <v0.6.1-0.20150616235619-48c5bdf4df4f; >=v0.6.2 <v0.6.3-0.20150808025114-cd9dfebcb255; >=v0.6.4 <v0.6.5-0.20150808051813-a09f4208fca6; >=v0.6.6 <v0.6.7-0.20150823215156-819355cd37fa; >=v0.6.8 <v0.6.9-0.20151004050932-48f4cbf9379e; >=v0.7.0 <v0.7.1-0.20151207060535-c1ebd4efd860; >=v0.7.2 <v0.7.3-0.20151210200618-d133e68338a7; >=v0.8.0 <v0.8.1-0.20160509205634-26caad27c107; >=v0.8.1 <v0.8.2-0.20160615181050-27ac524dafe4; >=v0.9.2 <v0.9.3-0.20160812202224-fc7d92a04a8d; >=v0.9.4 <v0.9.5-0.20160824201707-c7e699ac29b3; >=v0.9.6 <v0.9.7-0.20161221013723-a8dfaeae3d1c; >=v1.0.0 <v1.0.1-0.20170719002556-0e2882d741cd; >=v1.0.2 <v1.0.3-0.20170721094241-514572316435; >=v1.0.4 <v1.0.5-0.20171017145744-a2d2327975a4; >=v1.0.6 <v1.0.7-0.20180304213803-aeca31ce516b
    • Unknown
    • Apache-2.0
      >=v0
  • View github.com/nats-io/nats-server/v2/server package health on Snyk Advisor Open this link in a new tab
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the github.com/nats-io/nats-server/v2/server package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Improper Access Control

>=2.0.0 <2.8.2
  • L
Inadequate Encryption Strength

<2.2.3
  • M
Improper Authentication

>=2.2.0 <2.9.23 >=2.10.0 <2.10.2
  • H
Authentication Bypass by Primary Weakness

>=2.2.0 <2.9.23 >=2.10.0 <2.10.2
  • M
Directory Traversal

>=2.2.0 <2.8.0
  • M
Stack-based Buffer Overflow

<2.9.3
  • M
Denial of Service (DoS)

<2.9.3
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)

>=2.2.0 <2.7.4
  • H
Access Control Bypass

>=2.7.0 <2.7.2
  • M
Access Restriction Bypass

<2.2.0
  • H
Denial of Service (DoS)

<2.2.0
  • M
Improper Access Control

<2.1.9
  • H
Denial of Service (DoS)

>=2.0.0 <2.1.9
  • M
Improper Authentication

<2.1.9
  • H
Denial of Service (DoS)

<2.0.2