Описание
Improper Authorization in aedes
Versions of aedes before 0.35.1 does not respect its own authorization rules when a client sets a Last Will.
Recommendation
Update to version 0.35.1 or later.
Пакеты
Наименование
aedes
npm
Затронутые версииВерсия исправления
< 0.35.1
0.35.1
Связанные уязвимости
CVSS3: 5.3
nvd
больше 7 лет назад
Improper authorization in aedes version <0.35.0 will publish a LWT in a channel when a client is not authorized.