Linux Distros Unpatched Vulnerability : CVE-2025-10543

🗓️ 17 Dec 2025 00:00:00Reported by TenableType

CVE-2025-10543: Unpatched Eclipse Paho Go MQTT library <=1.5.0 leaks data due to invalid int size.

Reporter	Title	Published	Views	Family All 59
IBM Security Bulletins	Security Bulletin: Integer Overflow Leading to Packet Corruption in Eclipse Paho Go MQTT, affects watsonx.data	7 Apr 202611:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Maximo Application Suite uses os/exec 1.24.3; 1.24.4, ansible-9.4.0, github.com/eclipse/paho.mqtt.golang v1.3.5 and archive/tar 1.24.2; 1.24.4 which is vulnerable to CVE-2025-47906,CVE-2025-14010,CVE-2025-10543 and CVE-2025-58183	10 Mar 202608:18	–	ibm
CBLMariner	CVE-2025-10543 affecting package influxdb for versions less than 2.6.1-27	7 Jan 202619:09	–	cbl_mariner
CBLMariner	CVE-2025-10543 affecting package influxdb for versions less than 2.7.5-10	12 Jan 202621:27	–	cbl_mariner
CBLMariner	CVE-2025-10543 affecting package telegraf for versions less than 1.29.4-18	7 Jan 202619:09	–	cbl_mariner
CBLMariner	CVE-2025-10543 affecting package telegraf for versions less than 1.31.0-12	12 Jan 202621:27	–	cbl_mariner
Chainguard	CVE-2025-10543 vulnerabilities	3 Dec 202513:27	–	cgr
CNNVD	Eclipse Paho Go MQTT v3.1 library 安全漏洞	2 Dec 202500:00	–	cnnvd
CVE	CVE-2025-10543	2 Dec 202508:18	–	cve
Cvelist	CVE-2025-10543	2 Dec 202508:18	–	cvelist

Source	Link
access	www.access.redhat.com/security/cve/cve-2025-10543
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(278964);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/02/23");

  script_cve_id("CVE-2025-10543");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2025-10543");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - In Eclipse Paho Go MQTT v3.1 library (paho.mqtt.golang) versions <=1.5.0 UTF-8 encoded strings, passed
    into the library, may be incorrectly encoded if their length exceeds 65535 bytes. This may lead to
    unexpected content in packets sent to the server (for example, part of an MQTT topic may leak into the
    message body in a PUBLISH packet). The issue arises because the length of the data passed in was converted
    from an int64/int32 (depending upon CPU) to an int16 without checks for overflows. The int16 length was
    then written, followed by the data (e.g. topic). This meant that when the data (e.g. topic) was over 65535
    bytes then the amount of data written exceeds what the length field indicates. This could lead to a
    corrupt packet, or mean that the excess data leaks into another field (e.g. topic leaks into message
    body). (CVE-2025-10543)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2025-10543");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:U/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:U/RC:C");
  script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N");
  script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:U");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-10543");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/12/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/12/17");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:8");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:8");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:9");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rhc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rhc-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:yggdrasil");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:yggdrasil-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:rhc-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:yggdrasil");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:yggdrasil-devel");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/CentOS Linux-8", "Host/OS/Red Hat Enterprise Linux-10", "Host/OS/Red Hat Enterprise Linux-8", "Host/OS/Red Hat Enterprise Linux-9");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/CentOS/rpm-list")) && empty_or_null(get_one_kb_item("Host/RedHat/rpm-list"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Red Hat Enterprise Linux-10": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "10",
        "pkgs": [
          {"reference": "yggdrasil"},
          {"reference": "yggdrasil-devel"}
        ]
      }
    ]
  },
  "CentOS Linux-8": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "8",
        "pkgs": [
          {"reference": "rhc"}
        ]
      }
    ]
  },
  "Red Hat Enterprise Linux-8": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "8",
        "pkgs": [
          {"reference": "rhc"}
        ]
      }
    ]
  },
  "Red Hat Enterprise Linux-9": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "9",
        "pkgs": [
          {"reference": "rhc"},
          {"reference": "rhc-devel"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

23 Feb 2026 00:00Current

7.6High risk

Vulners AI Score7.6

CVSS 3.15.3

CVSS 46.3

EPSS0.00042

SSVC