Heap Buffer Overflow Vulnerability in NanoMQ 0.17.2: Triggered by nmq_subinfo_decode() in mqtt_parser.c

Heap Buffer Overflow Vulnerability in NanoMQ 0.17.2: Triggered by nmq_subinfo_decode() in mqtt_parser.c

CVE-2023-33659 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. The vulnerability can be triggered by calling the function nmq_subinfo_decode() in the file mqtt_parser.c. An attacker could exploit this vulnerability to cause a denial of service attack.

Learn more about our Web Application Penetration Testing UK.