3 matches found
CVE-2025-65953
NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Prior to version 0.22.5, a Heap-Use-After-Free UAF vulnerability exists in the TCP transport component of NanoMQ, which relies on the underlying NanoNNG library specifically in src/sp/transport/mqtt/brokertcp.c. The vulnerability...
CVE-2025-65953
creationtimestamp| type| source ---|---|--- 2025-11-26 01:23:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6ioz3wlvy2s...
CVE-2025-65953
NanoMQ (MQTT Broker) prior to 0.22.5 contains a Heap-Use-After-Free vulnerability in the TCP transport, caused by improper resource management and premature cleanup of message/pipe structures in src/sp/transport/mqtt/broker_tcp.c under certain malformed MQTTV5 retain traffic conditions. Affects N...