exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2021-34431

больше 4 лет назад

In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client that had connected with MQTT v5 sent a crafted CONNECT message to the broker a memory leak would occur, which could be used to provide a DoS attack against the broker.

CVSS3: 6.5

EPSS: Низкий

CVE-2021-34431

больше 4 лет назад

In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client that had connected with MQTT v5 sent a crafted CONNECT message to the broker a memory leak would occur, which could be used to provide a DoS attack against the broker.

CVSS3: 6.5

EPSS: Низкий

CVE-2021-34431

больше 4 лет назад

In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client ...

CVSS3: 6.5

EPSS: Низкий

GHSA-j546-3m5x-fx7p

больше 3 лет назад

In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client that had connected with MQTT v5 sent a crafted CONNECT message to the broker a memory leak would occur, which could be used to provide a DoS attack against the broker.

EPSS: Низкий

BDU:2022-01775

больше 4 лет назад

Уязвимость брокера сообщений Mosquitto, связанная с неправильным освобождением памяти перед удалением последний ссылки, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 6.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2021-34431 In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client that had connected with MQTT v5 sent a crafted CONNECT message to the broker a memory leak would occur, which could be used to provide a DoS attack against the broker.	CVSS3: 6.5	0% Низкий	больше 4 лет назад
CVE-2021-34431 In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client that had connected with MQTT v5 sent a crafted CONNECT message to the broker a memory leak would occur, which could be used to provide a DoS attack against the broker.	CVSS3: 6.5	0% Низкий	больше 4 лет назад
CVE-2021-34431 In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client ...	CVSS3: 6.5	0% Низкий	больше 4 лет назад
GHSA-j546-3m5x-fx7p In Eclipse Mosquitto version 1.6 to 2.0.10, if an authenticated client that had connected with MQTT v5 sent a crafted CONNECT message to the broker a memory leak would occur, which could be used to provide a DoS attack against the broker.		0% Низкий	больше 3 лет назад
BDU:2022-01775 Уязвимость брокера сообщений Mosquitto, связанная с неправильным освобождением памяти перед удалением последний ссылки, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 6.5	0% Низкий	больше 4 лет назад

Уязвимостей на страницу