A security vulnerability has been discovered in NATS Server, a communications system for digital systems, services, and devices. The vulnerability, identified as CVE-2025-30215, involves missing access controls for the JetStream (JS) API. The advisory explains that the management of JetStream assets occurs through messages in the $JS. subject namespace within the system account. While some of […]
The post NATS Server Vulnerability: Missing Access Controls in JetStream API appeared first on Daily CyberSecurity.