VDB
CVE-2026-33223
CVE-2026-33223
PUBLISHED
NATS Server: Incomplete Stripping of Nats-Request-Info Header Allows Identity Spoofing
EPSS 0.01% · 1.6th percentile
Risk Scores
EPSS Score
0.01%
1.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | nats | 0, 2.12.0 |
Timeline
- Mar 24, 2026 CVE Published
- Mar 25, 2026 Security Advisory
- Mar 26, 2026 PoC Published
- Mar 27, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score