Medium
CVSS 6.5
Overview
NanoMQ v0.22.10 was discovered to contain a heap overflow which allows attackers to cause a Denial of Service (DoS) via a crafted CONNECT message.
CVE-2024-42648
NanoMQ v0.22.10 was discovered to contain a heap overflow which allows attackers...
Risk analysis
This vulnerability is rated 🟡 MEDIUM.
- CVSS: 6.5 (MEDIUM)
- Detected tags: dos, heap_overflow (tag impact: LOW)
Recommended actions:
- Rate limiting, resource quotas and circuit breakers.