VYPR
Unrated severityOSV Advisory· Published Dec 15, 2025· Updated Dec 15, 2025

NanoMQ has Buffer Overflow

CVE-2025-59947

Description

NanoMQ is a messaging broker/bus for IoT Edge & SDV. Versions prior to 0.24.4 have a buffer overflow case while the PUBLISH packets trigger both shared subscription and vanila subscription. This is fixed in version 0.24.4. As a workaround, disable shared subscription.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Emqx/NanomqOSV2 versions
    0.0.1, 0.0.2, 0.0.3, …+ 1 more
    • (no CPE)range: 0.0.1, 0.0.2, 0.0.3, …
    • (no CPE)range: <0.24.4

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.