Lucene search
EclipseCVELIST:CVE-2018-12546HistoryMar 27, 2019 - 5:26 p.m.
CVE-2018-12546
2019-03-2717:26:20
CWE-284
eclipse
www.cve.org
9
In Eclipse Mosquitto version 1.0 to 1.5.5 (inclusive) when a client publishes a retained message to a topic, then has its access to that topic revoked, the retained message will still be published to clients that subscribe to that topic in the future. In some applications this may result in clients being able cause effects that would otherwise not be allowed.
CNA Affected
[
{
"product": "Eclipse Mosquitto",
"vendor": "The Eclipse Foundation",
"versions": [
{
"lessThan": "unspecified",
"status": "affected",
"version": "1.0",
"versionType": "custom"
},
{
"lessThanOrEqual": "1.5.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Code injection
2019-03-27 18:29:00
ubuntucve
ubuntucve
CVE-2018-12546
2019-03-27 00:00:00
veracode
veracode
Missing Access Control Enforcement
2019-02-12 03:36:12
debiancve
debiancve
CVE-2018-12546
2019-03-27 18:29:00
cve
cve
CVE-2018-12546
2019-03-27 18:29:00
nvd
nvd
CVE-2018-12546
2019-03-27 18:29:00
alpinelinux
alpinelinux
CVE-2018-12546
2019-03-27 18:29:00
osv
osv
CVE-2018-12546
2019-03-27 18:29:00
mosquitto - security update
2019-02-10 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-4388-1)
2019-02-09 00:00:00
Fedora Update for mosquitto FEDORA-2019-8cbe2a05cd
2019-02-18 00:00:00
openSUSE: Security Advisory for mosquitto (openSUSE-SU-2019:0233-1)
2019-02-23 00:00:00
suse
suse
Security update for mosquitto (low)
2019-02-23 00:00:00
Security update for mosquitto (low)
2019-02-22 00:00:00
nessus
nessus
Fedora 28 : mosquitto (2019-8cbe2a05cd)
2019-02-19 00:00:00
openSUSE Security Update : mosquitto (openSUSE-2019-233)
2019-02-25 00:00:00
Debian DSA-4388-1 : mosquitto - security update
2019-02-11 00:00:00
debian
debian
[SECURITY] [DSA 4388-1] mosquitto security update
2019-02-10 19:00:34
fedora
fedora
[SECURITY] Fedora 28 Update: mosquitto-1.5.6-1.fc28
2019-02-18 01:27:35