CVE-2017-7650

2017-09-1100:00:00

ubuntu.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

0.284

Percentile

96.9%

JSON

In Mosquitto before 1.4.12, pattern based ACLs can be bypassed by clients
that set their username/client id to ‘#’ or ‘+’. This allows locally or
remotely connected clients to access MQTT topics that they do have the
rights to. The same issue may be present in third party
authentication/access control plugins for Mosquitto.

Bugs

<https://bugs.launchpad.net/ubuntu/+source/mosquitto/+bug/1692818>

OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchmosquitto< 0.15-2ubuntu1.1UNKNOWN
ubuntu16.04noarchmosquitto< 1.4.8-1ubuntu0.16.04.1UNKNOWN
ubuntu16.10noarchmosquitto< 1.4.8-1ubuntu0.16.10.1UNKNOWN
ubuntu17.04noarchmosquitto< 1.4.10-2ubuntu0.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	14.04	noarch	mosquitto	< 0.15-2ubuntu1.1	UNKNOWN
ubuntu	16.04	noarch	mosquitto	< 1.4.8-1ubuntu0.16.04.1	UNKNOWN
ubuntu	16.10	noarch	mosquitto	< 1.4.8-1ubuntu0.16.10.1	UNKNOWN
ubuntu	17.04	noarch	mosquitto	< 1.4.10-2ubuntu0.1	UNKNOWN