Lucene search
K

9 matches found

OSV
OSV
added 2019/03/27 6:29 p.m.28 views

CVE-2018-12546

In Eclipse Mosquitto version 1.0 to 1.5.5 inclusive when a client publishes a retained message to a topic, then has its access to that topic revoked, the retained message will still be published to clients that subscribe to that topic in the future. In some applications this may result in clients...

6.5CVSS6.5AI score
Exploits0References1
CVE
CVE
added 2019/03/27 5:26 p.m.163 views

CVE-2018-12546

The CVE describes a vulnerability in Eclipse Mosquitto where, for versions 1.0–1.5.5, a retained message published to a topic remains delivered to future subscribers after that client’s access to the topic is revoked, potentially enabling effects not allowed by normal access controls. This is a s...

6.5CVSS6.4AI score0.00817EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/02/25 12:0 a.m.32 views

openSUSE Security Update : mosquitto (openSUSE-2019-233)

This update for mosquitto fixes the following issues : Security issues fixed : - CVE-2018-12546: Fixed an issue with revoked access to topics bsc1125019. - CVE-2018-12551: Fixed an issue which allowed malformed data in the password file to be treated as valid bsc1125020. - CVE-2018-12550: Fixed a...

8.1CVSS6.9AI score0.01475EPSS
Exploits2References6
OSV
OSV
added 2019/02/23 8:3 a.m.6 views

OPENSUSE-SU-2019:0237-1 Security update for mosquitto

This update for mosquitto fixes the following issues: Security issues fixed: - CVE-2018-12546: Fixed an issue with revoked access to topics bsc1125019. - CVE-2018-12551: Fixed an issue which allowed malformed data in the password file to be treated as valid bsc1125020. - CVE-2018-12550: Fixed an ...

8.1CVSS6.8AI score0.01475EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2019/02/23 12:0 a.m.24 views

openSUSE: Security Advisory for mosquitto (openSUSE-SU-2019:0233-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS7.3AI score0.01475EPSS
Exploits2References2
OPENSUSE Linux
OPENSUSE Linux
added 2019/02/23 12:0 a.m.225 views

Security update for mosquitto (low)

openSUSE Security Update: Security update for mosquitto Announcement ID: openSUSE-SU-2019:0237-1 Rating: low References: 1125019 1125020 1125021 Cross-References: CVE-2018-12546 CVE-2018-12550 CVE-2018-12551 Affected Products: openSUSE Backports SLE-15 An update that fixes three vulnerabilities i...

8.1CVSS7.8AI score0.01475EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2019/02/18 12:0 a.m.28 views

Fedora Update for mosquitto FEDORA-2019-8cbe2a05cd

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/02/11 12:0 a.m.30 views

Debian DSA-4388-1 : mosquitto - security update

Three vulnerabilities were discovered in the Mosquitto MQTT broker, which could result in authentication bypass. Please refer to https://mosquitto.org/blog/2019/02/version-1-5-6-released/ for additional information. C Tenable Network Security, Inc. The descriptive text and package checks in this...

8.1CVSS7AI score0.01475EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2019/02/09 12:0 a.m.74 views

Debian: Security Advisory (DSA-4388-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.3AI score0.01475EPSS
Exploits2References5
Rows per page
Query Builder