CVE-2024-36856

2024-06-1200:00:00

ubuntu.com

rmqtt broker 0.4.0

denial of service

tcp packets

unix

7.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

RMQTT Broker 0.4.0 allows remote attackers to cause a Denial of Service
(daemon crash) via a certain sequence of five TCP packets.

OSVersionArchitecturePackageVersionFilename
ubuntu22.04noarchbroker< anyUNKNOWN
ubuntu23.10noarchbroker< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	22.04	noarch	broker	< any	UNKNOWN
ubuntu	23.10	noarch	broker	< any	UNKNOWN

References

gist.github.com/pengwGit/d8410afeb0d5d11ab79f596a32178c2e

github.com/rmqtt/rmqtt/releases/tag/0.4.0

launchpad.net/bugs/cve/CVE-2024-36856

nvd.nist.gov/vuln/detail/CVE-2024-36856

security-tracker.debian.org/tracker/CVE-2024-36856

www.cve.org/CVERecord?id=CVE-2024-36856