Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-70090
HistorySep 01, 2021 - 12:00 a.m.

Eclipse Mosquitto License Issue Vulnerability

2021-09-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
10

EPSS

0.002

Percentile

54.6%

Eclipse Mosquitto is a set of open source messaging agent software from the Eclipse Foundation. eclipse Mosquitto has a security vulnerability that stems from the fact that in Eclipse mosquito versions 2.0 through 2.0.11, when using the dynamic security plugin, if a client is unsubscribed from a topic when a persistent client is offline capability, the existing subscriptions for that client will not be cancelled. No detailed vulnerability details are currently available.

CPENameOperatorVersion
eclipse mosquitto >=2.0.0,le2.0.11