{"url":"http://public2.vulnerablecode.io/api/packages/108822?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=loongarch64&distroversion=v3.24&reponame=community","type":"apk","namespace":"alpine","name":"nats-server","version":"2.12.6-r0","qualifiers":{"arch":"loongarch64","distroversion":"v3.24","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78010?format=json","vulnerability_id":"VCID-3k6a-p5dd-jfed","summary":"NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats-server provides an MQTT client interface. Prior to versions 2.11.15 and 2.12.5, Sessions and Messages can by hijacked via MQTT Client ID malfeasance. Versions 2.11.15 and 2.12.5 patch the issue. No known workarounds are available.","references":[{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-fcjp-h8cc-6879","reference_id":"GHSA-fcjp-h8cc-6879","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-25T13:03:49Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-fcjp-h8cc-6879"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-06.tx","reference_id":"secnote-2026-06.tx","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-25T13:03:49Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-06.tx"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108822?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=loongarch64&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=loongarch64&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33215"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3k6a-p5dd-jfed"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28224?format=json","vulnerability_id":"VCID-4rgk-52aa-fbf7","summary":"","references":[{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-9983-vrx2-fg9c","reference_id":"GHSA-9983-vrx2-fg9c","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T15:26:05Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-9983-vrx2-fg9c"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-12.txt","reference_id":"secnote-2026-12.txt","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T15:26:05Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-12.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108822?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=loongarch64&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=loongarch64&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33222"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4rgk-52aa-fbf7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28225?format=json","vulnerability_id":"VCID-fnuq-fap9-5ygq","summary":"","references":[{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-pwx7-fx9r-hr4h","reference_id":"GHSA-pwx7-fx9r-hr4h","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T17:51:14Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-pwx7-fx9r-hr4h"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-09.txt","reference_id":"secnote-2026-09.txt","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T17:51:14Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-09.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108822?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=loongarch64&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=loongarch64&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33223"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fnuq-fap9-5ygq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28228?format=json","vulnerability_id":"VCID-ggb8-w7rw-akfz","summary":"","references":[{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-55h8-8g96-x4hj","reference_id":"GHSA-55h8-8g96-x4hj","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:39:39Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-55h8-8g96-x4hj"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-08.txt","reference_id":"secnote-2026-08.txt","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:39:39Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-08.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108822?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=loongarch64&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=loongarch64&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33246"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ggb8-w7rw-akfz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28219?format=json","vulnerability_id":"VCID-mggp-xyd7-dke6","summary":"","references":[{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server/commit/b5b63cfc35a57075e09c1f57503d31721bed8099","reference_id":"b5b63cfc35a57075e09c1f57503d31721bed8099","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:37:25Z/"}],"url":"https://github.com/nats-io/nats-server/commit/b5b63cfc35a57075e09c1f57503d31721bed8099"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-v722-jcv5-w7mc","reference_id":"GHSA-v722-jcv5-w7mc","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:37:25Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-v722-jcv5-w7mc"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-05.txt","reference_id":"secnote-2026-05.txt","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:37:25Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-05.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108822?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=loongarch64&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=loongarch64&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33216"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mggp-xyd7-dke6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28220?format=json","vulnerability_id":"VCID-ux61-k97a-dqd8","summary":"","references":[{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-jxxm-27vp-c3m5","reference_id":"GHSA-jxxm-27vp-c3m5","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-25T20:07:59Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-jxxm-27vp-c3m5"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-07.txt","reference_id":"secnote-2026-07.txt","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-25T20:07:59Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-07.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108822?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=loongarch64&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=loongarch64&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33217"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ux61-k97a-dqd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28230?format=json","vulnerability_id":"VCID-y8wf-p3v4-eyc5","summary":"","references":[{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-3f24-pcvm-5jqc","reference_id":"GHSA-3f24-pcvm-5jqc","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T19:35:03Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-3f24-pcvm-5jqc"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-13.txt","reference_id":"secnote-2026-13.txt","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T19:35:03Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-13.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108822?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=loongarch64&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=loongarch64&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33248"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y8wf-p3v4-eyc5"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=loongarch64&distroversion=v3.24&reponame=community"}