5 matches found
Security Bulletin: Integer Overflow Leading to Packet Corruption in Eclipse Paho Go MQTT, affects watsonx.data
Summary Eclipse Paho Go MQTT version 1.5.0 contains an integer overflow issue when handling UTF-8 strings longer than 65535 bytes. Improper length conversion can cause malformed MQTT packets, potentially leading to data leakage between fields e.g., topic data leaking into message body. This can...
CVE-2025-10543 affecting package telegraf for versions less than 1.29.4-18
CVE-2025-10543 affecting package telegraf for versions less than 1.29.4-18. A patched version of the package is available...
Linux Distros Unpatched Vulnerability : CVE-2025-10543
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Eclipse Paho Go MQTT v3.1 library paho.mqtt.golang versions =1.5.0 UTF-8 encoded strings, passed into the library, may be incorrectly encoded if their length...
CVE-2025-10543 vulnerabilities
Vulnerabilities for packages: bento, telegraf, minio, dapr, falcosidekick...
CVE-2025-10543
In Eclipse Paho Go MQTT v3.1 library paho.mqtt.golang versions =1.5.0 UTF-8 encoded strings, passed into the library, may be incorrectly encoded if their length exceeds 65535 bytes. This may lead to unexpected content in packets sent to the server for example, part of an MQTT topic may leak into...