High severityNVD Advisory· Published Oct 21, 2025· Updated Apr 15, 2026
CVE-2025-11757
CVE-2025-11757
Description
The CloudEdge Cloud does not sanitize the MQTT topic input, which could allow an attacker to leverage the MQTT wildcard to receive all the messages that should be delivered to other users by subscribing to the a MQTT topic. In these messages, the attacker can obtain the credentials and key information to connect to the cameras from peer to peer.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Package: https://wordpress.org/plugins/cloud
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.