exploitDog

GHSA-w7fr-grpr-9jg5

Опубликовано: 29 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An access control issue in NanoMQ v0.21.10 allows attackers to bypass security restrictions and access sensitive system topic messages using MQTT wildcard characters.

An access control issue in NanoMQ v0.21.10 allows attackers to bypass security restrictions and access sensitive system topic messages using MQTT wildcard characters.

Ссылки

EPSS

Процентиль: 17%

0.00053

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2024-42655

CVSS3: 8.8

nvd

6 месяцев назад

An access control issue in NanoMQ v0.21.10 allows attackers to bypass security restrictions and access sensitive system topic messages using MQTT wildcard characters.

EPSS

Процентиль: 17%

0.00053

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-284