Vulnerabilities > Emqx > Nanomq > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-12 CVE-2024-44460 Unspecified vulnerability in Emqx Nanomq 0.21.9
An invalid read size in Nanomq v0.21.9 allows attackers to cause a Denial of Service (DoS).
network
low complexity
emqx
7.5
2023-06-12 CVE-2023-34488 Out-of-bounds Write vulnerability in Emqx Nanomq 0.17.5
NanoMQ 0.17.5 is vulnerable to heap-buffer-overflow in the conn_handler function of mqtt_parser.c when it processes malformed messages.
local
low complexity
emqx CWE-787
7.8
2023-06-12 CVE-2023-34494 Use After Free vulnerability in Emqx Nanomq 0.16.5
NanoMQ 0.16.5 is vulnerable to heap-use-after-free in the nano_ctx_send function of nmq_mqtt.c.
network
low complexity
emqx CWE-416
7.5
2023-06-08 CVE-2023-33657 Use After Free vulnerability in Emqx Nanomq 0.17.2
A use-after-free vulnerability exists in NanoMQ 0.17.2.
network
low complexity
emqx CWE-416
7.5
2023-06-08 CVE-2023-33658 Out-of-bounds Write vulnerability in Emqx Nanomq 0.17.2
A heap buffer overflow vulnerability exists in NanoMQ 0.17.2.
network
low complexity
emqx CWE-787
7.5
2023-06-08 CVE-2023-33660 Out-of-bounds Write vulnerability in Emqx Nanomq 0.17.2
A heap buffer overflow vulnerability exists in NanoMQ 0.17.2.
network
low complexity
emqx CWE-787
7.5
2023-06-06 CVE-2023-33659 Out-of-bounds Write vulnerability in Emqx Nanomq 0.17.2
A heap buffer overflow vulnerability exists in NanoMQ 0.17.2.
network
low complexity
emqx CWE-787
7.5
2023-05-04 CVE-2023-29994 Out-of-bounds Write vulnerability in Emqx Nanomq 0.15.0
In NanoMQ v0.15.0-0, Heap overflow occurs in read_byte function of mqtt_code.c.
network
low complexity
emqx CWE-787
7.5
2023-05-04 CVE-2023-29995 Out-of-bounds Write vulnerability in Emqx Nanomq 0.15.0
In NanoMQ v0.15.0-0, a Heap overflow occurs in copyn_utf8_str function of mqtt_parser.c
network
low complexity
emqx CWE-787
7.5
2023-05-04 CVE-2023-29996 NULL Pointer Dereference vulnerability in Emqx Nanomq 0.15.0
In NanoMQ v0.15.0-0, segment fault with Null Pointer Dereference occurs in the process of decoding subinfo_decode and unsubinfo_decode.
network
low complexity
emqx CWE-476
7.5