VYPR
High severity7.5OSV Advisory· Published Jun 12, 2024· Updated Apr 15, 2026

CVE-2024-36856

CVE-2024-36856

Description

RMQTT Broker 0.4.0 is vulnerable to Denial of Service (DoS) due to improper session resource management. An attacker can exhaust system memory and crash the daemon by establishing and maintaining a vast number of long-lived malicious publish/subscribe sessions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Rmqtt/RmqttOSV2 versions
    0.2.10, 0.2.11, 0.2.12, …+ 1 more
    • (no CPE)range: 0.2.10, 0.2.11, 0.2.12, …
    • (no CPE)range: = 0.4.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.