CVE-2023-3592
Severity:
HIGH
Type:
Unavailable / Other
Publication date:
02/10/2023
Last modified:
04/10/2023
Description
In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 CONNECT packets with a will message that contains invalid property types.<br />
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:eclipse:mosquitto:*:*:*:*:*:*:*:* | 2.0.16 (excluding) |
To consult the complete list of CPE names with products and versions, see this page