Versions of mqtt-packet
prior to 3.4.6, or 4.x prior to 4.0.5 are affected by a denial of service vulnerability wherein specific sequences of MQTT packets can crash the application.
Version 3.x: Update to version 3.4.6 or later.
Version 4.x: Update to version 4.0.5 or later.
CPE | Name | Operator | Version |
---|---|---|---|
mqtt-packet | lt | 4.0.5 | |
mqtt-packet | ge | 4.0.0 | |
mqtt-packet | lt | 3.4.6 |