Product:

Nanomq

(Emqx)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 19
Date Id Summary Products Score Patch Annotated
2025-07-15 CVE-2024-42650 NanoMQ 0.17.5 was discovered to contain a segmentation fault via the component /nanomq/pub_handler.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted PUBLISH message. Nanomq N/A
2025-07-14 CVE-2024-42646 A segmentation fault in NanoMQ v0.21.10 allows attackers to cause a Denial of Service (DoS) via crafted messages. Nanomq 7.5
2025-07-14 CVE-2024-42648 NanoMQ v0.22.10 was discovered to contain a heap overflow which allows attackers to cause a Denial of Service (DoS) via a crafted CONNECT message. Nanomq 6.5
2025-07-14 CVE-2024-42649 NanoMQ v0.22.10 was discovered to contain a memory leak which allows attackers to cause a Denial of Service (DoS) via a crafted PUBLISH message. Nanomq 6.5
2023-06-12 CVE-2023-34488 NanoMQ 0.17.5 has a one-byte heap-based buffer over-read in the conn_handler function of mqtt_parser.c when it processes malformed messages. Nanomq 7.8
2024-04-17 CVE-2024-31040 Buffer Overflow vulnerability in the get_var_integer function in mqtt_parser.c in NanoMQ 0.21.7 allows remote attackers to cause a denial of service via a series of specially crafted hexstreams. Nanomq N/A
2024-04-17 CVE-2024-31041 Null Pointer Dereference vulnerability in topic_filtern function in mqtt_parser.c in NanoMQ 0.21.7 allows attackers to cause a denial of service. Nanomq N/A
2024-04-22 CVE-2024-31036 A heap-buffer-overflow vulnerability in the read_byte function in NanoMQ v.0.21.7 allows attackers to cause a denial of service via transmission of crafted hexstreams. Nanomq N/A
2024-02-26 CVE-2024-25767 nanomq 0.21.2 contains a Use-After-Free vulnerability in /nanomq/nng/src/core/socket.c. Nanomq N/A
2023-05-04 CVE-2023-29994 In NanoMQ v0.15.0-0, Heap overflow occurs in read_byte function of mqtt_code.c. Nanomq 7.5