/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2021-3127

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2021-3127

CGA ID

CGA-wg3j-593x-7xrc

Severity

7.5

High

CVSS V3

Description

NATS Server 2.x before 2.2.0 and JWT library before 2.0.1 have Incorrect Access Control because Import Token bindings are mishandled.

References

  • https://images.chainguard.dev/security/CGA-wg3j-593x-7xrc
  • https://github.com/advisories/GHSA-62mh-w5cv-p88c
  • https://github.com/advisories/GHSA-9r5x-fjv3-q6h4
  • https://advisories.nats.io/CVE/CVE-2021-3127.txt
  • https://security-tracker.debian.org/tracker/CVE-2021-3127

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation