Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2026/06/14 12:0 a.m.23 views

PT-2026-49135

Name of the Vulnerable Software and Affected Versions LiamBindle MQTT-C versions prior to 1.1.7 Description A heap-based out-of-bounds read and integer underflow exist in the mqtt unpack publish response function within src/mqtt.c. A remote unauthenticated attacker who controls an MQTT broker or...

8.8CVSS5.5AI score0.00407EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/10/31 4:6 a.m.4 views

SUSE CVE-2024-3935

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the...

6.5CVSS7AI score0.00761EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/30 11:45 a.m.15 views

CVE-2024-3935 Eclipse Mosquito: Double free vulnerability

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the...

6CVSS7AI score0.00761EPSS
Exploits1References3
CVE
CVE
added 2024/10/30 11:45 a.m.86 views

CVE-2024-3935

CVE-2024-3935 affects Eclipse Mosquitto: 2.0.0–2.0.18 expose a double-free crash when a broker with an outgoing bridge uses topic remapping and receives a crafted PUBLISH from a remote connection. Connected advisories confirm the issue across multiple distributions and show remediation through up...

6.5CVSS7.4AI score0.00761EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/10/30 11:45 a.m.25 views

CVE-2024-3935 Eclipse Mosquito: Double free vulnerability

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the...

6CVSS0.00761EPSS
Exploits1References3
OSV
OSV
added 2024/10/30 11:45 a.m.13 views

CVE-2024-3935 Eclipse Mosquito: Double free vulnerability

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the...

6CVSS7.1AI score0.00761EPSS
Exploits1References7
Rows per page
Query Builder