Vulnerabilities > CVE-2019-6241 - Unspecified vulnerability in Bevywise Mqttroute 1.1

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

bevywise

NVD

Published: 2019-06-10

Updated: 2024-11-21

Summary

In Bevywise MQTTRoute 1.1 build 1018-002, a connect packet combined with a malformed unsubscribe request packet can be used to cause a Denial of Service attack against the broker.

Vulnerable Configurations

Part	Description	Count
Application	Bevywise Bevywise Mqttroute 1.1	1

References

https://github.com/insi2304/MQTTRoute-fuzz/blob/master/MQTT_Route_crash.png
https://github.com/insi2304/MQTTRoute-fuzz/blob/master/MQTT_Route_crash.png