Vulnerabilities > CVE-2020-13410 - Improper Handling of Exceptional Conditions vulnerability in Aedes Project Aedes 0.42.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

aedes-project

CWE-755

NVD

Published: 2020-08-26

Updated: 2022-11-05

Summary

An issue was discovered in MoscaJS Aedes 0.42.0. lib/write.js does not properly consider exceptions during the writing of an invalid packet to a stream.

Vulnerable Configurations

Part	Description	Count
Application	Aedes_Project Aedes Project Aedes 0.42.0	1

Common Weakness Enumeration (CWE)

CWE-755 - Improper Handling of Exceptional Conditions

References

https://github.com/moscajs/aedes/pull/493
https://payatu.com/advisory/dos-in-aedes-mqtt-broker
https://cwe.mitre.org/data/definitions/248.html