{"url":"http://public2.vulnerablecode.io/api/packages/108825?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=s390x&distroversion=v3.24&reponame=community","type":"apk","namespace":"alpine","name":"nats-server","version":"2.12.6-r0","qualifiers":{"arch":"s390x","distroversion":"v3.24","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/78010?format=json","vulnerability_id":"VCID-3k6a-p5dd-jfed","summary":"NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The nats-server provides an MQTT client interface. Prior to versions 2.11.15 and 2.12.5, Sessions and Messages can by hijacked via MQTT Client ID malfeasance. Versions 2.11.15 and 2.12.5 patch the issue. No known workarounds are available.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33215.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33215.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33215","reference_id":"","reference_type":"","scores":[{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04367","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33215"},{"reference_url":"https://github.com/nats-io/nats-server","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nats-io/nats-server"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33215","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33215"},{"reference_url":"https://pkg.go.dev/vuln/GO-2026-4833","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://pkg.go.dev/vuln/GO-2026-4833"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451021","reference_id":"2451021","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451021"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-fcjp-h8cc-6879","reference_id":"GHSA-fcjp-h8cc-6879","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-25T13:03:49Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-fcjp-h8cc-6879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21769","reference_id":"RHSA-2026:21769","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21769"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22347","reference_id":"RHSA-2026:22347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23345","reference_id":"RHSA-2026:23345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:23345"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-06.tx","reference_id":"secnote-2026-06.tx","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-25T13:03:49Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-06.tx"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108825?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=s390x&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=s390x&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33215","GHSA-fcjp-h8cc-6879"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3k6a-p5dd-jfed"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28224?format=json","vulnerability_id":"VCID-4rgk-52aa-fbf7","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33222.json","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33222.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33222","reference_id":"","reference_type":"","scores":[{"value":"9e-05","scoring_system":"epss","scoring_elements":"0.01071","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33222"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nats-io/nats-server"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33222","reference_id":"","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33222"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451480","reference_id":"2451480","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451480"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-9983-vrx2-fg9c","reference_id":"GHSA-9983-vrx2-fg9c","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T15:26:05Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-9983-vrx2-fg9c"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-12.txt","reference_id":"secnote-2026-12.txt","reference_type":"","scores":[{"value":"4.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T15:26:05Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-12.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108825?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=s390x&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=s390x&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33222","GHSA-9983-vrx2-fg9c"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4rgk-52aa-fbf7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28225?format=json","vulnerability_id":"VCID-fnuq-fap9-5ygq","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33223.json","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33223.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33223","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01611","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33223"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nats-io/nats-server"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33223","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33223"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451479","reference_id":"2451479","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451479"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-pwx7-fx9r-hr4h","reference_id":"GHSA-pwx7-fx9r-hr4h","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T17:51:14Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-pwx7-fx9r-hr4h"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-09.txt","reference_id":"secnote-2026-09.txt","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T17:51:14Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-09.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108825?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=s390x&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=s390x&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33223","GHSA-pwx7-fx9r-hr4h"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fnuq-fap9-5ygq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28228?format=json","vulnerability_id":"VCID-ggb8-w7rw-akfz","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33246.json","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33246.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33246","reference_id":"","reference_type":"","scores":[{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10617","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33246"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nats-io/nats-server"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33246","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33246"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451449","reference_id":"2451449","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451449"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-55h8-8g96-x4hj","reference_id":"GHSA-55h8-8g96-x4hj","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:39:39Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-55h8-8g96-x4hj"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-08.txt","reference_id":"secnote-2026-08.txt","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:39:39Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-08.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108825?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=s390x&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=s390x&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33246","GHSA-55h8-8g96-x4hj"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ggb8-w7rw-akfz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28219?format=json","vulnerability_id":"VCID-mggp-xyd7-dke6","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33216.json","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33216.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33216","reference_id":"","reference_type":"","scores":[{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.1589","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33216"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nats-io/nats-server"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33216","reference_id":"","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33216"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451448","reference_id":"2451448","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451448"},{"reference_url":"https://github.com/nats-io/nats-server/commit/b5b63cfc35a57075e09c1f57503d31721bed8099","reference_id":"b5b63cfc35a57075e09c1f57503d31721bed8099","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:37:25Z/"}],"url":"https://github.com/nats-io/nats-server/commit/b5b63cfc35a57075e09c1f57503d31721bed8099"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-v722-jcv5-w7mc","reference_id":"GHSA-v722-jcv5-w7mc","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:37:25Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-v722-jcv5-w7mc"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21769","reference_id":"RHSA-2026:21769","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21769"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22347","reference_id":"RHSA-2026:22347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23345","reference_id":"RHSA-2026:23345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:23345"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-05.txt","reference_id":"secnote-2026-05.txt","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-28T01:37:25Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-05.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108825?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=s390x&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=s390x&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33216","GHSA-v722-jcv5-w7mc"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mggp-xyd7-dke6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28220?format=json","vulnerability_id":"VCID-ux61-k97a-dqd8","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33217.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33217.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33217","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11202","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33217"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nats-io/nats-server"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33217","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33217"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451446","reference_id":"2451446","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451446"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-jxxm-27vp-c3m5","reference_id":"GHSA-jxxm-27vp-c3m5","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-25T20:07:59Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-jxxm-27vp-c3m5"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21769","reference_id":"RHSA-2026:21769","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:21769"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22347","reference_id":"RHSA-2026:22347","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:22347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23345","reference_id":"RHSA-2026:23345","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:23345"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-07.txt","reference_id":"secnote-2026-07.txt","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-25T20:07:59Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-07.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108825?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=s390x&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=s390x&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33217","GHSA-jxxm-27vp-c3m5"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ux61-k97a-dqd8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/28230?format=json","vulnerability_id":"VCID-y8wf-p3v4-eyc5","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33248.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33248.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33248","reference_id":"","reference_type":"","scores":[{"value":"9e-05","scoring_system":"epss","scoring_elements":"0.00937","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33248"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://github.com/nats-io/nats-server","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/nats-io/nats-server"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33248","reference_id":"","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33248"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451484","reference_id":"2451484","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451484"},{"reference_url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-3f24-pcvm-5jqc","reference_id":"GHSA-3f24-pcvm-5jqc","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T19:35:03Z/"}],"url":"https://github.com/nats-io/nats-server/security/advisories/GHSA-3f24-pcvm-5jqc"},{"reference_url":"https://advisories.nats.io/CVE/secnote-2026-13.txt","reference_id":"secnote-2026-13.txt","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T19:35:03Z/"}],"url":"https://advisories.nats.io/CVE/secnote-2026-13.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/108825?format=json","purl":"pkg:apk/alpine/nats-server@2.12.6-r0?arch=s390x&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=s390x&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2026-33248","GHSA-3f24-pcvm-5jqc"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y8wf-p3v4-eyc5"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/nats-server@2.12.6-r0%3Farch=s390x&distroversion=v3.24&reponame=community"}