6 matches found
@device.farm/mongoose-mqtt (>=1.0.0 <=1.0.1), @device.farm/mqtt-reg (>=1.0.0 <=1.0.7) +17 more potentially affected by CVE-2017-10910 via mqtt (>=2.0.1 <=2.14.0)
mqtt NPM version =2.0.1, =1.0.0, =1.0.0, =1.0.2, =2.1.0, =0.9.11, =0.0.1, =0.9.5, =0.0.64, =3.0.1, =3.0.4, =0.9.12, =0.24.0, =0.0.8, =0.9.0, =1.1.2 and more Source cves: CVE-2017-10910 Source advisory: OSV:GHSA-H9MJ-FGHC-664W...
CVE-2017-10910
creationtimestamp| type| source ---|---|--- 2017-12-28 22:51:58+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-h9mj-fghc-664w...
CVE-2017-10910
MQTT.js 2.x.x prior to 2.15.0 issue in handling PUBLISH tickets may lead to an attacker causing a denial-of-service condition...
CVE-2017-10910
MQTT.js 2.x.x prior to 2.15.0 issue in handling PUBLISH tickets may lead to an attacker causing a denial-of-service condition...
CVE-2017-10910
MQTT.js 2.x was affected by a DoS condition due to improper handling of PUBLISH packets, with the issue present in releases prior to 2.15.0. The root cause involves how PUBLISH tickets are processed, allowing an attacker to trigger a denial-of-service. The publicly documented remediation is to up...
Microsoft Windows MSC XXE Data Exfiltration Vulnerability
Document Title: =============== Microsoft Windows MSC XXE Data Exfiltration Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2095 Video: https://www.youtube.com/watch?v=GmaNKZ0h3Yc Advisory: https://www.vulnerability-lab.com/getcontent.php?id=2094 Release...