CVE-2018-17614
CVE-2018-17614 affects the Losant Arduino MQTT Client up to version 2.7. The flaw is in parsing MQTT PUBLISH packets where user-supplied data length isn’t properly validated before copying to a fixed-size stack buffer, enabling remote code execution. This is a stack-based overflow that does not r...