4 matches found
CVE-2023-33657
A use-after-free vulnerability exists in NanoMQ 0.17.2. The vulnerability can be triggered by calling the function nnimqttmsggetpublishproperty in the file mqttmsg.c. This vulnerability is caused by improper data tracing, and an attacker could exploit it to cause a denial of service attack...
Oracle Solaris Critical Patch Update : jul2023_SRU11_4_58_144_3
This Solaris system is missing necessary patches to address critical security updates : %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Oracle CPU for jul2023. include'deprecatednasllevel.inc'; include'compat.inc'...
CVE-2023-33657
NanoMQ 0.17.2 is affected by CVE-2023-33657 due to a use-after-free in mqtt_msg.c: nni_mqtt_msg_get_publish_property(), caused by improper data tracing. This can lead to a denial of service. No fixed version is stated in the provided documents. A potential workaround from PT-2023-24436 is to disa...
CVE-2023-33657
A use-after-free vulnerability exists in NanoMQ 0.17.2. The vulnerability can be triggered by calling the function nnimqttmsggetpublishproperty in the file mqttmsg.c. This vulnerability is caused by improper data tracing, and an attacker could exploit it to cause a denial of service attack...