Vulnerabilities > CVE-2020-26521 - NULL Pointer Dereference vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH

Summary

The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a nil dereference in Go code).

Common Weakness Enumeration (CWE)