Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Nanomq
(Emqx)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 15 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-04-17 | CVE-2024-31040 | Buffer Overflow vulnerability in the get_var_integer function in mqtt_parser.c in NanoMQ 0.21.7 allows remote attackers to cause a denial of service via a series of specially crafted hexstreams. | Nanomq | N/A | ||
| 2024-04-17 | CVE-2024-31041 | Null Pointer Dereference vulnerability in topic_filtern function in mqtt_parser.c in NanoMQ 0.21.7 allows attackers to cause a denial of service. | Nanomq | N/A | ||
| 2024-04-22 | CVE-2024-31036 | A heap-buffer-overflow vulnerability in the read_byte function in NanoMQ v.0.21.7 allows attackers to cause a denial of service via transmission of crafted hexstreams. | Nanomq | N/A | ||
| 2024-02-26 | CVE-2024-25767 | nanomq 0.21.2 contains a Use-After-Free vulnerability in /nanomq/nng/src/core/socket.c. | Nanomq | N/A | ||
| 2023-05-04 | CVE-2023-29994 | In NanoMQ v0.15.0-0, Heap overflow occurs in read_byte function of mqtt_code.c. | Nanomq | 7.5 | ||
| 2023-05-04 | CVE-2023-29995 | In NanoMQ v0.15.0-0, a Heap overflow occurs in copyn_utf8_str function of mqtt_parser.c | Nanomq | 7.5 | ||
| 2023-05-04 | CVE-2023-29996 | In NanoMQ v0.15.0-0, segment fault with Null Pointer Dereference occurs in the process of decoding subinfo_decode and unsubinfo_decode. | Nanomq | 7.5 | ||
| 2023-05-30 | CVE-2023-33656 | A memory leak vulnerability exists in NanoMQ 0.17.2. The vulnerability is located in the file message.c. An attacker could exploit this vulnerability to cause a denial of service attack by causing the program to consume all available memory resources. | Nanomq | 5.5 | ||
| 2023-06-06 | CVE-2023-33659 | A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. The vulnerability can be triggered by calling the function nmq_subinfo_decode() in the file mqtt_parser.c. An attacker could exploit this vulnerability to cause a denial of service attack. | Nanomq | 7.5 | ||
| 2023-06-08 | CVE-2023-33658 | A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. The vulnerability can be triggered by calling the function nni_msg_get_pub_pid() in the file message.c. An attacker could exploit this vulnerability to cause a denial of service attack. | Nanomq | 7.5 |