exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2024-10525

около 1 года назад

In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.

CVSS3: 9.8

EPSS: Средний

CVE-2024-10525

около 1 года назад

In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.

CVSS3: 7.6

EPSS: Средний

CVE-2024-10525

около 1 года назад

In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.

CVSS3: 9.8

EPSS: Средний

CVE-2024-10525

около 1 года назад

In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a maliciou ...

CVSS3: 9.8

EPSS: Средний

GHSA-cm54-mprw-5279

около 1 года назад

In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.

CVSS3: 9.1

EPSS: Средний

BDU:2024-09881

около 1 года назад

Уязвимость брокера сообщений Eclipse Mosquitto, связанная с переполнением буфера в динамической памяти, позволяющая нарушителю получить доступ к конфиденциальной информации

CVSS3: 9.1

EPSS: Средний

ROS-20241112-07

около 1 года назад

Множественные уязвимости mosquitto

CVSS3: 9.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-10525 In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.	CVSS3: 9.8	18% Средний	около 1 года назад
CVE-2024-10525 In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.	CVSS3: 7.6	18% Средний	около 1 года назад
CVE-2024-10525 In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.	CVSS3: 9.8	18% Средний	около 1 года назад
CVE-2024-10525 In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a maliciou ...	CVSS3: 9.8	18% Средний	около 1 года назад
GHSA-cm54-mprw-5279 In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.	CVSS3: 9.1	18% Средний	около 1 года назад
BDU:2024-09881 Уязвимость брокера сообщений Eclipse Mosquitto, связанная с переполнением буфера в динамической памяти, позволяющая нарушителю получить доступ к конфиденциальной информации	CVSS3: 9.1	18% Средний	около 1 года назад
ROS-20241112-07 Множественные уязвимости mosquitto	CVSS3: 9.1		около 1 года назад

Уязвимостей на страницу