3 matches found
CVE-2021-28166
In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated client that had connected with MQTT v5 sent a crafted CONNACK message to the broker, a NULL pointer dereference would occur...
UBUNTU-CVE-2021-28166
In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated client that had connected with MQTT v5 sent a crafted CONNACK message to the broker, a NULL pointer dereference would occur...
CVE-2021-28166
Eclipse Mosquitto broker (versions 2.0.0–2.0.9) is vulnerable to a NULL pointer dereference when an authenticated client that previously connected with MQTT v5 sends a crafted CONNACK message. Affected component: broker handling CONNACK under MQTT v5. Impact as per sources: availability impact HI...