Unrated severityNVD Advisory· Published Nov 24, 2025· Updated Nov 24, 2025

CVE-2025-65503

Description

Use after free in endpoint destructors in Redboltz async_mqtt 10.2.5 allows local users to cause a denial of service via triggering SSL initialization failure that results in incorrect destruction order between io_context and endpoint objects.

Affected products

Redboltz/async_mqttdescription
Redboltz/async_mqttllm-create
Range: <=10.2.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/redboltz/async_mqtt/issues/436mitre
github.com/redboltz/async_mqtt/pull/437mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000