CVE-2026-58209
MEDIUM
4.3
CVSS 3.1
Description
NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Prior to 2.14.3 and 2.12.12, MQTT retained message delivery and QoS1+ durable replay could deliver messages whose original topics matched a subscriber configured subscribe deny rule because these delivery paths did not consistently recheck the concrete original topic before sending the MQTT PUBLISH to the subscriber. This issue is fixed in versions 2.14.3 and 2.12.12.
Metadata
Severity & Metrics
4.3
MEDIUM CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
SSVC — CISA Coordinator
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| nats-io | nats-server | — | < 2.12.12, >= 2.14.0-RC.1, < 2.14.3 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-863 | cna | CWE-863: Incorrect Authorization |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 4.3 | MEDIUM | 3.1 | cna | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
References (5)
- https://github.com/nats-io/nats-server/security/advisories/GHSA-7qmq-8cc4-hxwg https://github.com/nats-io/nats-server/security/advisories/GHSA-7qmq-8cc4-hxwg
- https://github.com/nats-io/nats-server/commit/181b1f51f40b9954c57e9d478e051fb257679356 https://github.com/nats-io/nats-server/commit/181b1f51f40b9954c57e9d478e051fb257679356
- https://github.com/nats-io/nats-server/commit/1c429b6fdc5afd4188cc5faf1127f6334896cd87 https://github.com/nats-io/nats-server/commit/1c429b6fdc5afd4188cc5faf1127f6334896cd87
- https://github.com/nats-io/nats-server/releases/tag/v2.12.12 https://github.com/nats-io/nats-server/releases/tag/v2.12.12
- https://github.com/nats-io/nats-server/releases/tag/v2.14.3 https://github.com/nats-io/nats-server/releases/tag/v2.14.3