exploitDog

GHSA-p2wx-52q9-6mgg

Опубликовано: 17 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 2.7

Описание

Buffer Overflow vulnerability in the get_var_integer function in mqtt_parser.c in NanoMQ 0.21.7 allows remote attackers to cause a denial of service via a series of specially crafted hexstreams.

Buffer Overflow vulnerability in the get_var_integer function in mqtt_parser.c in NanoMQ 0.21.7 allows remote attackers to cause a denial of service via a series of specially crafted hexstreams.

Ссылки

EPSS

Процентиль: 55%

0.00328

Низкий

2.7 Low

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2024-31040

CVSS3: 2.7

nvd

почти 2 года назад

Buffer Overflow vulnerability in the get_var_integer function in mqtt_parser.c in NanoMQ 0.21.7 allows remote attackers to cause a denial of service via a series of specially crafted hexstreams.

EPSS

Процентиль: 55%

0.00328

Низкий

2.7 Low

CVSS3

CVE ID

Дефекты

CWE-120