Lucene search
EclipseCVELIST:CVE-2021-34431HistoryJul 22, 2021 - 1:45 p.m.
CVE-2021-34431
2021-07-2213:45:13
CWE-401
eclipse
www.cve.org
1
In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client that had connected with MQTT v5 sent a crafted CONNECT message to the broker a memory leak would occur, which could be used to provide a DoS attack against the broker.
CNA Affected
[
{
"product": "Eclipse Mosquitto",
"vendor": "The Eclipse Foundation",
"versions": [
{
"lessThan": "unspecified",
"status": "affected",
"version": "1.6",
"versionType": "custom"
},
{
"lessThanOrEqual": "2.0.10",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2021-34431
2021-07-22 14:15:08
mosquitto vulnerabilities
2023-11-21 15:23:51
cve
cve
CVE-2021-34431
2021-07-22 14:15:08
alpinelinux
alpinelinux
CVE-2021-34431
2021-07-22 14:15:00
ubuntucve
ubuntucve
CVE-2021-34431
2021-07-22 00:00:00
debiancve
debiancve
CVE-2021-34431
2021-07-22 14:15:08
prion
prion
Memory corruption
2021-07-22 14:15:00
redhatcve
redhatcve
CVE-2021-34431
2022-05-20 23:17:17
nvd
nvd
CVE-2021-34431
2021-07-22 14:15:08
rosalinux
rosalinux
Advisory ROSA-SA-2023-2224
2023-08-29 12:18:55
ibm
ibm
openvas
openvas
Ubuntu: Security Advisory (USN-6492-1)
2023-11-22 00:00:00
nessus
nessus
ubuntu
ubuntu
Mosquitto vulnerabilities
2023-11-21 00:00:00