Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
BIT-nats-2026-33248
  • Bitnami/nats
 NATS has mTLS verify_and_map authentication bypass via incorrect Subject DN matching yesterday
  • Fix available
  • Severity - 4.2 (Medium)
BIT-nats-2026-33247
  • Bitnami/nats
 NATS credentials are exposed in monitoring port via command-line argv yesterday
  • Fix available
  • Severity - 5.3 (Medium)
BIT-nats-2026-33246
  • Bitnami/nats
 NATS: Leafnode connections allow spoofing of Nats-Request-Info identity headers yesterday
  • Fix available
  • Severity - 5.4 (Medium)
BIT-nats-2026-33223
  • Bitnami/nats
 NATS Server: Incomplete Stripping of Nats-Request-Info Header Allows Identity Spoofing yesterday
  • Fix available
  • Severity - 5.4 (Medium)
BIT-nats-2026-33222
  • Bitnami/nats
 NATS JetStream has an authorization bypass through its Management API yesterday
  • Fix available
  • Severity - 4.9 (Medium)
BIT-nats-2026-33219
  • Bitnami/nats
 NATS is vulnerable to pre-auth DoS through WebSockets client service yesterday
  • Fix available
  • Severity - 5.3 (Medium)
BIT-nats-2026-33218
  • Bitnami/nats
 NATS has pre-auth server panic via leafnode handling yesterday
  • Fix available
  • Severity - 7.5 (High)
BIT-nats-2026-33217
  • Bitnami/nats
 NATS allows MQTT clients to bypass ACL checks yesterday
  • Fix available
  • Severity - 6.5 (Medium)
BIT-nats-2026-33216
  • Bitnami/nats
 NATS has MQTT plaintext password disclosure yesterday
  • Fix available
  • Severity - 7.5 (High)
BIT-nats-2026-29785
  • Bitnami/nats
 NATS Server panic via malicious compression on leafnode port yesterday
  • Fix available
  • Severity - 7.5 (High)
BIT-gitlab-2026-4363
  • Bitnami/gitlab
 Incorrect Authorization in GitLab yesterday
  • Fix available
  • Severity - 3.7 (Low)
BIT-gitlab-2026-3988
  • Bitnami/gitlab
 Inefficient Algorithmic Complexity in GitLab yesterday
  • Fix available
  • Severity - 7.5 (High)
BIT-gitlab-2026-3857
  • Bitnami/gitlab
 Cross-Site Request Forgery (CSRF) in GitLab yesterday
  • Fix available
  • Severity - 8.1 (High)
BIT-gitlab-2026-2995
  • Bitnami/gitlab
 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab yesterday
  • Fix available
  • Severity - 5.4 (Medium)
BIT-gitlab-2026-2973
  • Bitnami/gitlab
 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab yesterday
  • Fix available
  • Severity - 5.4 (Medium)
BIT-gitlab-2026-2745
  • Bitnami/gitlab
 Authentication Bypass Using an Alternate Path or Channel in GitLab yesterday
  • Fix available
  • Severity - 8.1 (High)
Load more...