CVE-2020-26521
published 2020-11-06CVE-2020-26521: The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a nil dereference in Go code).
PriorityP335high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
2.09%
79.3th percentile
The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a nil dereference in Go code).
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | golang-github-nats-io-jwt | < golang-github-nats-io-jwt 2.2.0-1 (bookworm) | golang-github-nats-io-jwt 2.2.0-1 (bookworm) |
| fedoraproject | fedora | — | — |
| github.com | nats-io_jwt | >= 0 < 1.1.0 | 1.1.0 |
| github.com | nats-io_nats-server_v2 | >= 0 < 2.1.9 | 2.1.9 |
| linuxfoundation | nats-server | < 2.1.9 | 2.1.9 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_debian7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Panic in NATS JWT decoding in github.com/nats-io/jwt
osv·2022-07-01
CVE-2020-26521 Panic in NATS JWT decoding in github.com/nats-io/jwt
Panic in NATS JWT decoding in github.com/nats-io/jwt
A malicious account can create and sign a User JWT which causes a panic when decoded by the NATS JWT library.
OSV
Nil dereference in NATS JWT, DoS of nats-server
osv·2022-02-11
CVE-2020-26521 [HIGH] Nil dereference in NATS JWT, DoS of nats-server
Nil dereference in NATS JWT, DoS of nats-server
## Problem Description
The NATS account system has an Operator trusted by the servers, which signs Accounts, and each Account can then create and sign Users within their account. The Operator should be able to safely issue Accounts to other entities which it does not fully trust.
A malicious Account could create and sign a User JWT with a state not created by the normal tooling, such that decoding by the NATS JWT library (written in Go) would attempt a nil dereference, aborting execution.
The NATS Server is known to be impacted by this.
## Affected versions
#### JWT library
* all versions prior to 1.1.0
#### NATS Server
* Version 2 prior to 2.1.9
## Impact
#### JWT library
* Programs would nil dereference and panic, aborting exe
GHSA
Nil dereference in NATS JWT, DoS of nats-server
ghsa·2022-02-11
CVE-2020-26521 [HIGH] CWE-476 Nil dereference in NATS JWT, DoS of nats-server
Nil dereference in NATS JWT, DoS of nats-server
## Problem Description
The NATS account system has an Operator trusted by the servers, which signs Accounts, and each Account can then create and sign Users within their account. The Operator should be able to safely issue Accounts to other entities which it does not fully trust.
A malicious Account could create and sign a User JWT with a state not created by the normal tooling, such that decoding by the NATS JWT library (written in Go) would attempt a nil dereference, aborting execution.
The NATS Server is known to be impacted by this.
## Affected versions
#### JWT library
* all versions prior to 1.1.0
#### NATS Server
* Version 2 prior to 2.1.9
## Impact
#### JWT library
* Programs would nil dereference and panic, aborting exe
OSV
Nil dereference in NATS JWT causing DoS of nats-server
osv·2021-05-21·CVSS 7.5
CVE-2020-26521 [HIGH] Nil dereference in NATS JWT causing DoS of nats-server
Nil dereference in NATS JWT causing DoS of nats-server
(This advisory is canonically )
## Problem Description
The NATS account system has an Operator trusted by the servers, which signs Accounts, and each Account can then create and sign Users within their account. The Operator should be able to safely issue Accounts to other entities which it does not fully trust.
A malicious Account could create and sign a User JWT with a state not created by the normal tooling, such that decoding by the NATS JWT library (written in Go) would attempt a nil dereference, aborting execution.
The NATS Server is known to be impacted by this.
## Affected versions
#### JWT library
* all versions prior to 1.1.0
#### NATS Server
* Version 2 prior to 2.1.9
## Impact
#### JWT library
* Programs would
OSV
CVE-2020-26521: The JWT library in NATS nats-server before 2
osv·2020-11-06·CVSS 7.5
CVE-2020-26521 [HIGH] CVE-2020-26521: The JWT library in NATS nats-server before 2
The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a nil dereference in Go code).
Debian
CVE-2020-26521: golang-github-nats-io-jwt - The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a n...
vendor_debian·2020·CVSS 7.5
CVE-2020-26521 [HIGH] CVE-2020-26521: golang-github-nats-io-jwt - The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a n...
The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a nil dereference in Go code).
Scope: local
bookworm: resolved (fixed in 2.2.0-1)
forky: resolved (fixed in 2.2.0-1)
sid: resolved (fixed in 2.2.0-1)
trixie: resolved (fixed in 2.2.0-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.openwall.com/lists/oss-security/2020/11/02/2https://github.com/nats-io/nats-server/commits/masterhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT67XCLIIBYRT762SVFBYFFTQFVSM3SI/http://www.openwall.com/lists/oss-security/2020/11/02/2https://github.com/nats-io/nats-server/commits/masterhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VT67XCLIIBYRT762SVFBYFFTQFVSM3SI/
2020-11-06
Published