Mosquitto@1.4.15 Security Vulnerabilities and Issues — Mosquitto@1.4.15 CVE List

Lucene search

EclipseMosquitto1.4.15

3 matches found

CVE•added 2018/06/05 8:29 p.m.•95 views

CVE-2017-7653

The Eclipse Mosquitto broker up to version 1.4.15 does not reject strings that are not valid UTF-8. A malicious client could cause other clients that do reject invalid UTF-8 strings to disconnect themselves from the broker by sending a topic string which is not valid UTF-8, and so cause a denial of...

5.3CVSS5.9AI score0.00729EPSS

CVE•added 2018/06/05 8:29 p.m.•81 views

CVE-2017-7654

In Eclipse Mosquitto 1.4.15 and earlier, a Memory Leak vulnerability was found within the Mosquitto Broker. Unauthenticated clients can send crafted CONNECT packets which could cause a denial of service in the Mosquitto Broker.

7.5CVSS7.1AI score0.01136EPSS

CVE•added 2019/03/27 8:29 p.m.•69 views

CVE-2017-7655

In Eclipse Mosquitto version from 1.0 to 1.4.15, a Null Dereference vulnerability was found in the Mosquitto library which could lead to crashes for those applications using the library.

7.5CVSS7.3AI score0.00654EPSS