A vulnerability identified as problematic has been detected in nats-io nats-server up to 2.11.14/2.12.5 . Affected by this issue is some unknown functionality of the component JetStream . The manipulation leads to authorization bypass. This vulnerability is documented as CVE-2026-33222 . The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.