CVE-2023-47090Incorrect Authorization in Nats-io Nats-server V2

CWE-863Incorrect AuthorizationCWE-305Authentication Bypass by Primary Weakness7 documents5 sources
Severity
6.5MEDIUMNVD
EPSS
0.3%
top 50.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
Linuxfoundation Nats-serverGithub.com Nats-io Nats-server V2Debian Nats-server+7 more
Timeline
PublishedOct 30

Description

NATS nats-server before 2.9.23 and 2.10.x before 2.10.2 has an authentication bypass. An implicit $G user in an authorization block can sometimes be used for unauthenticated access, even when the intention of the configuration was for each user to have an account. The earliest affected version is 2.2.0.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages11 packages

debiandebian/nats-server< nats-server 2.10.3-1 (forky)
NVDlinuxfoundation/nats-server2.2.02.9.23+1
Gogithub.com/nats-io_nats-server_v22.2.02.9.23+1
Debianlinuxfoundation/nats-server< 2.10.3-1+1

🔴Vulnerability Details

4
OSV
CVE-2023-47090: NATS nats-server before 22023-10-30
OSV
Authorization bypass in github.com/nats-io/nats-server/v22023-10-24
OSV
NATS.io: Adding accounts for just the system account adds auth bypass2023-10-19
GHSA
NATS.io: Adding accounts for just the system account adds auth bypass2023-10-19

📋Vendor Advisories

2
Microsoft
NATS nats-server before 2.9.23 and 2.10.x before 2.10.2 has an authentication bypass. An implicit $G user in an authorization block can sometimes be used for unauthenticated access even when the inten2023-10-10
Debian
CVE-2023-47090: nats-server - NATS nats-server before 2.9.23 and 2.10.x before 2.10.2 has an authentication by...2023