VYPR
Unrated severityNVD Advisory· Published Apr 7, 2021· Updated Aug 3, 2024

CVE-2021-28166

CVE-2021-28166

Description

In Eclipse Mosquitto version 2.0.0 to 2.0.9, if an authenticated client that had connected with MQTT v5 sent a crafted CONNACK message to the broker, a NULL pointer dereference would occur.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Eclipse/Mosquittollm-fuzzy2 versions
    >=2.0.0, <=2.0.9+ 1 more
    • (no CPE)range: >=2.0.0, <=2.0.9
    • (no CPE)range: 2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.