Lucene search
K

6 matches found

Hacker One
Hacker One
added 2026/04/29 7:44 a.m.29 views

curl: MQTT state machine confusion: PINGRESP/DISCONNECT with non-zero remaining_length dispatches to stale nextstate

Summary: In lib/mqtt.c, the state machine in mqttdoing lines 894-911 in curl 8.20.0 does not validate that PINGRESP 0xD0 and DISCONNECT 0xE0 packets have remaininglength == 0 as required by MQTT 3.1.1 spec sections 3.13.1 and 3.14.1. A malicious broker can send a PINGRESP fixed header with non-ze...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-6697

Malware in sbrugna...

7.8CVSS6.4AI score0.02665EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/10/11 12:0 a.m.4 views

PT-2024-38981

Name of the Vulnerable Software and Affected Versions: Eclipse Mosquitto versions up to 2.0.18a Description: The issue allows an attacker to cause memory leaking, segmentation fault, or heap-use-after-free by sending specific sequences of packets, including "CONNECT", "DISCONNECT", "SUBSCRIBE",...

9.8CVSS7AI score0.579EPSS
Exploits3References44
Positive Technologies
Positive Technologies
added 2024/02/19 12:0 a.m.5 views

PT-2024-13889

Name of the Vulnerable Software and Affected Versions eProsima Fast DDS versions prior to 2.13.0 eProsima Fast DDS versions prior to 2.12.2 eProsima Fast DDS versions prior to 2.11.3 eProsima Fast DDS versions prior to 2.10.3 eProsima Fast DDS versions prior to 2.6.7 Description A vulnerability h...

9.6CVSS9.2AI score0.00478EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2019/10/07 12:0 a.m.48 views

Fedora 31 : mosquitto (2019-4c69fb4cd7)

1.6.7 ===== Broker : - Add workaround for working with libwebsockets 3.2.0. - Fix potential crash when reloading config. Client library : - Don't use / in autogenerated client ids, to avoid confusing with topics. - Fix mosquittomaxinflightmessagesset and mosquittointoption..., MOSQOPTMAX,...

6.5CVSS6.9AI score0.02742EPSS
Exploits0References2
NVD
NVD
added 2009/04/21 6:30 p.m.28 views

CVE-2008-6737

Crysis 1.21 and earlier allows remote attackers to obtain sensitive player information such as real IP addresses by sending a keyexchange packet without a previous join packet, which causes Crysis to send a disconnect packet that includes unrelated log information...

7.8CVSS6.3AI score0.02665EPSS
Exploits1References5
Rows per page
Query Builder