Security Advisory

CVE-2024-8376

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-11 15:18:54

Last updated 2024-10-31 09:15:30

Assigner eclipse

State PUBLISHED

Description

In Eclipse Mosquitto up to version 2.0.18a, an attacker can achieve memory leaking, segmentation fault or heap-use-after-free by sending specific sequences of "CONNECT", "DISCONNECT", "SUBSCRIBE", "UNSUBSCRIBE" and "PUBLISH" packets.

← Browse all CVEs View on cve.org ↗