Vulnerabilities > Emqx
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-17 | CVE-2023-37781 | Path Traversal vulnerability in Emqx 4.3.8 An issue in the emqx_sn plugin of EMQX v4.3.8 allows attackers to execute a directory traversal via uploading a crafted .txt file. | 6.5 |
| 2023-06-12 | CVE-2023-34488 | Out-of-bounds Write vulnerability in Emqx Nanomq 0.17.5 NanoMQ 0.17.5 is vulnerable to heap-buffer-overflow in the conn_handler function of mqtt_parser.c when it processes malformed messages. | 7.8 |
| 2023-06-12 | CVE-2023-34494 | Use After Free vulnerability in Emqx Nanomq 0.16.5 NanoMQ 0.16.5 is vulnerable to heap-use-after-free in the nano_ctx_send function of nmq_mqtt.c. | 7.5 |
| 2023-06-08 | CVE-2023-33657 | Use After Free vulnerability in Emqx Nanomq 0.17.2 A use-after-free vulnerability exists in NanoMQ 0.17.2. | 7.5 |
| 2023-06-08 | CVE-2023-33658 | Out-of-bounds Write vulnerability in Emqx Nanomq 0.17.2 A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. | 7.5 |
| 2023-06-08 | CVE-2023-33660 | Out-of-bounds Write vulnerability in Emqx Nanomq 0.17.2 A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. | 7.5 |
| 2023-06-06 | CVE-2023-33659 | Out-of-bounds Write vulnerability in Emqx Nanomq 0.17.2 A heap buffer overflow vulnerability exists in NanoMQ 0.17.2. | 7.5 |
| 2023-05-30 | CVE-2023-33656 | Allocation of Resources Without Limits or Throttling vulnerability in Emqx Nanomq 0.17.2 A memory leak vulnerability exists in NanoMQ 0.17.2. | 5.5 |
| 2023-05-04 | CVE-2023-29994 | Out-of-bounds Write vulnerability in Emqx Nanomq 0.15.0 In NanoMQ v0.15.0-0, Heap overflow occurs in read_byte function of mqtt_code.c. | 7.5 |
| 2023-05-04 | CVE-2023-29995 | Out-of-bounds Write vulnerability in Emqx Nanomq 0.15.0 In NanoMQ v0.15.0-0, a Heap overflow occurs in copyn_utf8_str function of mqtt_parser.c | 7.5 |