Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.10 views

CVE-2025-56352

In tinyMQTT commit 6226ade15bd4f97be2d196352e64dd10937c1962 2024-02-18, the broker mishandles protocol violations during CONNECT packet parsing. When receiving a CONNECT packet with a zero-length Client ID while CleanSession is set to 0, the broker correctly replies with a CONNACK return code 0x0...

7.5CVSS5.5AI score0.00278EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/18 12:0 a.m.14 views

EUVD-2025-209887

In tinyMQTT commit 6226ade15bd4f97be2d196352e64dd10937c1962 2024-02-18, the broker mishandles protocol violations during CONNECT packet parsing. When receiving a CONNECT packet with a zero-length Client ID while CleanSession is set to 0, the broker correctly replies with a CONNACK return code 0x0...

7.5CVSS5.9AI score0.00278EPSS
Exploits0References1
Hacker One
Hacker One
added 2026/05/04 1:51 p.m.28 views

curl: MQTT CONNACK Packet Type Bypass leads to RCE via Malicious Broker

Summary: mqttverifyconnack in lib/mqtt.c never checks that the received packet type is actually a CONNACK 0x20. The constant MQTTMSGCONNACK is commented out at line 45, making the check impossible to write. A malicious broker can send any packet — e.g. PUBACK 0x40 — with remaininglength=2 and...

6.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/02 3:36 p.m.6 views

CVE-2025-66023

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Versions prior to 0.24.5 have a Heap-Use-After-Free UAF vulnerability within the MQTT bridge client component implemented via the underlying NanoNNG library. The vulnerability is triggered when NanoMQ acts as a bridge connecting ...

6.9CVSS7.1AI score0.00314EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/01 3:11 p.m.6 views

CVE-2025-66023 NanoMQ has Use-After-Free of malformed bridging message

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Versions prior to 0.24.5 have a Heap-Use-After-Free UAF vulnerability within the MQTT bridge client component implemented via the underlying NanoNNG library. The vulnerability is triggered when NanoMQ acts as a bridge connecting ...

6.9CVSS6.7AI score0.00314EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/01 3:11 p.m.3 views

EUVD-2025-206141

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Versions prior to 0.24.5 have a Heap-Use-After-Free UAF vulnerability within the MQTT bridge client component implemented via the underlying NanoNNG library. The vulnerability is triggered when NanoMQ acts as a bridge connecting ...

6.9CVSS6.6AI score0.00314EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:44 a.m.5 views

SUSE CVE-2021-28166

In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated client that had connected with MQTT v5 sent a crafted CONNACK message to the broker, a NULL pointer dereference would occur...

6.5CVSS6.5AI score0.00968EPSS
Exploits0References3
OSV
OSV
added 2021/04/07 7:15 p.m.4 views

DEBIAN-CVE-2021-28166

In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated client that had connected with MQTT v5 sent a crafted CONNACK message to the broker, a NULL pointer dereference would occur...

6.5CVSS6.8AI score0.00968EPSS
Exploits0References1
Prion
Prion
added 2021/04/07 7:15 p.m.14 views

Null pointer dereference

In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated client that had connected with MQTT v5 sent a crafted CONNACK message to the broker, a NULL pointer dereference would occur...

4CVSS6.3AI score0.00968EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/04/07 7:15 p.m.2 views

UBUNTU-CVE-2021-28166

In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated client that had connected with MQTT v5 sent a crafted CONNACK message to the broker, a NULL pointer dereference would occur...

6.5CVSS5.8AI score0.00968EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2021/04/07 6:50 p.m.31 views

CVE-2021-28166

In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated client that had connected with MQTT v5 sent a crafted CONNACK message to the broker, a NULL pointer dereference would occur...

6.5CVSS6.3AI score0.00968EPSS
Exploits0
Rows per page
Query Builder