← Back to CVE List
CVE-2022-26652
NATS nats-server before 2.7.4 allows Directory Traversal (with write access) via an element in a ZIP archive for JetStream streams. nats-streaming-server before 0.24.3 is also affected.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt