Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.10 views

PT-2026-29123

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. In NanoMQ version 0.24.6, after enabling auth.http auth HTTP authentication, when a client connects to the broker using MQTT CONNECT without providing username/password, and the configuration params uses the placeholders %u / %P...

3.1CVSS5.8AI score0.00399EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2024/10/15 9:15 p.m.3 views

CVE-2024-44775

kmqtt v0.2.7 is vulnerable to Denial of Service DoS due to a Null Pointer Exception. A remote attacker can cause the broker to crash by sending a specially crafted MQTT CONNECT packet that triggers an unhandled null reference, leading to an immediate process termination...

7.5CVSS6AI score0.00507EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:47 a.m.4 views

SUSE CVE-2017-7651

In Eclipse Mosquitto 1.4.14, a user can shutdown the Mosquitto server simply by filling the RAM memory with a lot of connections with large payload. This can be done without authentications if occur in connection phase of MQTT protocol...

7.5CVSS6.9AI score0.05294EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/01/01 1:15 a.m.5 views

CVE-2021-45937

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClientDecodePacket called from MqttClientWaitType and MqttClientConnect...

5.5CVSS5.8AI score0.00887EPSS
Exploits1References4
OSV
OSV
added 2018/04/24 2:29 p.m.2 views

DEBIAN-CVE-2017-7651

In Eclipse Mosquitto 1.4.14, a user can shutdown the Mosquitto server simply by filling the RAM memory with a lot of connections with large payload. This can be done without authentications if occur in connection phase of MQTT protocol...

7.5CVSS7.5AI score0.05294EPSS
Exploits1References1
Rows per page
Query Builder