PT-2026-27612 · Nats · Nats Server

Publicado

2026-03-24

Atualizado

2026-05-21

CVE-2026-29785

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions NATS-Server versions prior to 2.11.14 NATS-Server versions prior to 2.12.5

Description NATS-Server, a high-performance messaging system, is susceptible to a server panic when configured as a leafnode. This occurs pre-authentication and requires compression to be enabled, which is the default setting when leafnodes are used. A remote attacker who can connect to the server can trigger this panic, potentially causing a denial-of-service condition. The issue arises from the negotiation of compression in the leafnode configuration, allowing a malicious NATS server to exploit the vulnerability.

Recommendations Versions prior to 2.11.14 should be updated to version 2.11.14 or later. Versions prior to 2.12.5 should be updated to version 2.12.5 or later. As a workaround, disable compression on the leafnode port by adding the following configuration:

leafnodes {
 port: 7422
 compression: off
}

Exploit

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

BIT-NATS-2026-29785

CVE-2026-29785

GHSA-52JH-2XXH-PWH6

GO-2026-4829

SUSE-SU-2026:1135-1

Produtos afetados

Nats Server

PT-2026-27612 · Nats · Nats Server

CVE-2026-29785

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 158