Description
NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Prior to 2.14.1 and 2.12.9, an MQTT client could include protocol control characters in subscription filters that were later forwarded as NATS protocol data to route or leafnode connections, corrupting the forwarded protocol stream and allowing injection of unintended NATS protocol operations. This issue is fixed in versions 2.14.1 and 2.12.9.
References (8)
Core 8
Core References
X_Refsource_Confirm x_refsource_confirm
https://github.com/nats-io/nats-server/security/advisories/GHSA-qrcv-3558-gj4f
X_Refsource_Misc x_refsource_misc
https://github.com/nats-io/nats-server/pull/8163
X_Refsource_Misc x_refsource_misc
https://github.com/nats-io/nats-server/pull/8164
X_Refsource_Misc x_refsource_misc
https://github.com/nats-io/nats-server/commit/366837cfc65ab9ccb4f98193c65e8daf238582d8
X_Refsource_Misc x_refsource_misc
https://github.com/nats-io/nats-server/commit/64ebae40051ee497c481e10f316238faf0de1736
X_Refsource_Misc x_refsource_misc
https://github.com/nats-io/nats-server/commit/f14856b9e57a36818f43851cb69b6e33670885c9
X_Refsource_Misc x_refsource_misc
https://github.com/nats-io/nats-server/releases/tag/v2.12.9
X_Refsource_Misc x_refsource_misc
https://github.com/nats-io/nats-server/releases/tag/v2.14.1
Scores
CVSS v3
7.1
EPSS
0.0044
EPSS Percentile
35.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-74
Status
published
Products (3)
linuxfoundation/nats-server
< 2.12.9
nats-io/nats-server
< 2.12.9
nats-io/nats-server
>= 2.14.0-RC.1, < 2.14.1
Published
Jul 08, 2026
Tracked Since
Jul 09, 2026